最新消息:雨落星辰是一个专注网站SEO优化、网站SEO诊断、搜索引擎研究、网络营销推广、网站策划运营及站长类的自媒体原创博客

amazon web services - Question about AWS SCP evaluation logic in aws docs - Stack Overflow

programmeradmin2浏览0评论

Reference: .html

In the docs linked above, the last table, I wonder why is the resultant for Production OU and Account E and F is "No s3 access"

Does this mean "no AWS service access at all"? Or only specifically no s3 access?

For a permission to be allowed for a specific account, there must be an explicit Allow statement at every level from the root through each OU in the direct path to the account (including the target account itself)

I guess it means no service access, since there's no explicit allow access at any level, but I want to reconfirm my understanding. Or perhaps I misunderstand the "resultant" wording there

发布评论

评论列表(0)

  1. 暂无评论