CfnPermissionSet

The ARN of the instance under which the operation will be executed. For more information about ARNs, see [Amazon Resource Names (ARNs) and AWS Service Namespaces](https://docs.aws.amazon.com//general/latest/gr/aws-arns-and-namespaces.html) in the *AWS General Reference* .

The name of the permission set.

Specifies the names and paths of the customer managed policies that you have attached to your permission set.

The description of the `PermissionSet` .

The inline policy that is attached to the permission set. > For `Length Constraints` , if a valid ARN is provided for a permission set, it is possible for an empty inline policy to be returned.

A structure that stores a list of managed policy ARNs that describe the associated AWS managed policy.

Specifies the configuration of the AWS managed or customer managed policy that you want to set as a permissions boundary. Specify either `CustomerManagedPolicyReference` to use the name and path of a customer managed policy, or `ManagedPolicyArn` to use the ARN of an AWS managed policy. A permissions boundary represents the maximum permissions that any policy can grant your role. For more information, see [Permissions boundaries for IAM entities](https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html) in the *IAM User Guide* . > Policies used as permissions boundaries don't provide permissions. You must also attach an IAM policy to the role. To learn how the effective permissions for a role are evaluated, see [IAM JSON policy evaluation logic](https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_evaluation-logic.html) in the *IAM User Guide* .

Used to redirect users within the application during the federation authentication process.

The length of time that the application user sessions are valid for in the ISO-8601 standard.

The tags to attach to the new `PermissionSet` .