Policy: AWS > S3 > Trusted Organizations [Default]
List of AWS Organizations that are trusted for access in the AWS S3 policy.
This policy is used by the Trusted Access control to determine which members of type "organization" are allowed to be granted access. You may use the '*' and '?' wildcard characters.example: - "o-333333333" - "o-c3a5y4wd52"
Note: Trusted Access > Organization Restrictions
are ONLY applied to AWS principals. Services and Federated principals do NOT contain the aws:PrincipalOrgId
condition key, and thus cannot be validated against the Organization.
Setting the policy to Empty
array will remove all organizations.
Resource Types
This policy targets the following resource types:
Policy Specification
Schema Type |
|
---|---|
Default template |
|
Default template input |
|
Category
In Your Workspace
Developers
- tmod:@turbot/turbot#/control/categories/securityTrustedAccess
- tmod:@turbot/aws-s3#/policy/types/s3PolicyTrustedOrganizations
- turbot graphql policy-type --id "tmod:@turbot/aws-s3#/policy/types/s3PolicyTrustedOrganizations"
- turbot graphql policy-settings --filter "policyTypeId:tmod:@turbot/aws-s3#/policy/types/s3PolicyTrustedOrganizations"
Get Policy TypeGet Policy Settings
Category URI
Policy Type URI
GraphQL
CLI