...
Principal Type | Explanation | Credential lifetime (min/max/default) | Learn more at AWS | ||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Federated UserAssumed Role | Yields temporary AWS security credentials for a federated user an assumed role with the Atlassian user name and an optional External ID and an optional , yet typically required IAM Policy (check Omit IAM Policy when resource-based policies are used insteadif absent, AWS applies a default)
| IAM user: 15m | /36hr/12hr | Root account: 15m/1hr | /1hr1) |
| Assumed Role|||||||||||||||||||||||||
Federated User | Yields temporary AWS security credentials for | an assumed role a federated user with the Atlassian user name and an optional | External ID and an optional IAM Policy (if absent, AWS applies a default, yet typically required IAM Policy (check Omit IAM Policy when resource-based policies are used instead)
| Assumed Role
|
| AssumeRole
| arn:aws:iam::123123123123:role/UpdateAPP
| IAM user: 15m/36hr/12hr Root account: 15m/1hr/1hr | Delegated API Access | AssumeRole | AssumeRole |
| |||||||||||||||||||
IAM User (session token) | Yields temporary AWS security credentials for the selected IAM user (recommended) or AWS account (disadvised) itself
| IAM user: 15m/36hr/12hr Root account: 15m/1hr/1hr | |||||||||||||||||||||||||||||
Notes | 1) The 12hr maximum is only available with an appropriately configured Maximum Session Duration Setting for a Role. |