SSO permission set is a template that defines a collection of one or more IAM policies. A permission set is applied to allow SSO principals(Users or Groups) access to one or more AWS accounts.
Sometimes after creating the permission sets we leave it without applying it to any user/group on an AWS account. It becomes difficult to find what all permission sets are lying unattached to any AWS account.
Today we are giving you a simple PowerShell script that will fetch all the unattached permission sets along with their ARN.
0 comments:
Post a Comment