📄️ About Permission Sets
AWS best practices dictate that the principle of least privilege should be followed for permission assignment. What this means, in practice, is that users of AWS accounts should be granted privileges that allow them to perform only the required tasks.
📄️ Create a Permission Set Assignment
Permission Set Assignments permit users to utilize the permissions afforded by a Permission Set within a Stax-managed AWS account. Before creating an assignment, ensure the Account Type, Group, and Permission Set to be assigned access to are created.
📄️ Create a Permission Set
Create a Permission Set and configure assignments to provide users with tailored access to Stax-managed AWS accounts.
📄️ Delete a Permission Set Assignment
Permission Set Assignments cannot be edited, only deleted and recreated. To delete an Assignment:
📄️ Delete a Permission Set
Permission Sets can be deleted when no longer required. Prior to deleting a Permission Set, first delete its Assignments.
📄️ Edit a Permission Set
Permission Sets can be edited to change their details if required. A common use case for this is when updating the IAM Policy Document that defines the level of access granted by this Permission Set.
📄️ Retry a Permission Set Assignment Deployment
In some circumstances you may need to retry deploying a Permission Set Assignment. This is useful if a deployment fails and you wish to retry it.