Problemunvalidated
A Secrets Manager resource policy includes a required Principal field, and the user wants to restrict access only to IAM roles whose ARNs match a wildcard pattern. The proposed policy uses Principal set to the account root plus a Condition on aws:PrincipalArn.
ecf911dd-0445-4ff6-96d3-d3da67199a47
A Secrets Manager resource policy includes a required Principal field, and the user wants to restrict access only to IAM roles whose ARNs match a wildcard pattern. The proposed policy uses Principal set to the account root plus a Condition on aws:PrincipalArn.