![]() ![]() resource-type – AWS Services contain different types of resources, hence the resource type attribute.resource-id – is a unique identifier to distinguish multiple resources from the same AWS resource.account-id – is the ID of the AWS account that owns the resource, this typically consists of 12 numbers, and here are instructions on how to find it on your account.eu-central-1 for the data center in Frankfurt. region – is the region that’s being used in your AWS account for the deployment of your AWS services/resources e.g.For the ARN format, you need to use the service prefix name (2nd column in the table below). service – is the AWS service name that’s being used as a reference.The available options are: aws, aws-cn and aws-us-gov. partition – is the location where the resource is located.The general format for an ARN looks like this: arn:partition:service:region:account-id:resource-idĪrn:partition:service:region:account-id:resource-type/resource-idĪrn:partition:service:region:account-id:resource-type:resource-id In the official documentation, you find a general reference guide on using ARNs, that’s helpful to a certain extent, but when you want to apply permissions on AWS resources, then you need the prefix name of the AWS service and the ARN in order to deny or allow actions on it.ĪRNs uniquely identify AWS resources across all of AWS. This cheat sheet shows a complete overview of 300+ Amazon Resource Names (ARNs) references that you can apply to IAM policies within AWS. ![]()
0 Comments
Leave a Reply. |