AWS Fundamentals Logo
AWS Fundamentals
AWS::DataZone::GroupProfile

DataZone GroupProfile

Group profiles represent groups of Amazon DataZone users. Groups can be manually created, or mapped to Active Directory groups of enterprise customers. In Amazon DataZone, groups serve two purposes. First, a group can map to a team of users in the organizational chart, and thus reduce the administrative work of a Amazon DataZone project owner when there are new employees joining or leaving a team. Second, corporate administrators use Active Directory groups to manage and update user statuses ...

Properties

3 configurable properties. 2 required. Click a row to see details.

Filter:
PropertyTypeFlags
DomainIdentifier
string
RequiredCreate-onlyWrite-only
GroupIdentifier
string
RequiredCreate-onlyWrite-only
Status
string

Return Values

Values returned after the resource is created. Access these with Fn::GetAtt.

AttributeTypeDescription
DomainIdstringThe identifier of the Amazon DataZone domain in which the group profile is created.
GroupNamestringThe group-name of the Group Profile.
IdstringThe ID of the Amazon DataZone group profile.

Sample CloudFormation Template

A minimal template with required properties and common optional ones.

template.yaml
AWSTemplateFormatVersion: "2010-09-09"
Description: Sample template for AWS::DataZone::GroupProfile

Resources:
  MyResource:
    Type: AWS::DataZone::GroupProfile
    Properties:
      DomainIdentifier: "my-domainidentifier"
      GroupIdentifier: "my-groupidentifier"

Required IAM Permissions

Permissions CloudFormation needs in your IAM role to manage this resource.

create

datazone:CreateGroupProfiledatazone:GetGroupProfiledatazone:UpdateGroupProfilesso:ListProfilessso:GetProfilesso:AssociateProfilesso:DisassociateProfile

read

datazone:GetGroupProfile

update

datazone:UpdateGroupProfiledatazone:GetGroupProfilesso:ListProfilessso:GetProfilesso:AssociateProfilesso:DisassociateProfile

delete

datazone:DeleteGroupProfiledatazone:GetGroupProfiledatazone:UpdateGroupProfilesso:ListProfilessso:GetProfilesso:AssociateProfilesso:DisassociateProfile

list

datazone:SearchGroupProfiles

Learn AWS the Practical Way

Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.

Subscribe to Newsletter

Quick Facts

ServiceDataZone
Properties6
Required2
TaggingNot supported
Primary IDDomainId

Supported Operations

CreateReadUpdateDeleteList

Immutable After Creation

These properties cannot be changed after the resource is created. Updating them triggers a replacement.

DomainIdentifierGroupIdentifier

Related Resources

External Links