Prerequisites

IAM role authentication requires an AWS EC2 instance to perform aggregation and provisioning operations.
Create an IAM role and assign required permission to it so that it uses all the cross-account roles.
Create a customer/Inline managed policy in each AWS account that you want to manage with policy document specified in Multiple Group Object Source Policies and Non Multiple-group Object Source Policies.
Create Cross Account Roles in each AWS account that you want to manage and attach the appropriate policies to the role.
The AWS System Administrator can refine the Permission Policies as needed.

Feedback is provided as an informational resource only and does not form part of SailPoint's official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.


	You are here:

Prerequisites

Documentation Feedback