sts:*AWS AWS Security Token Service IAM Actions
16 IAM actions for sts:*
Actions
16 actions available. Filter by access level or search by name.
Filter:
| Action | Access Level |
|---|---|
sts:AssumeRole | Permissions |
sts:AssumeRoleWithSAML | Permissions |
sts:AssumeRoleWithWebIdentity | Permissions |
sts:AssumeRoot | Read |
sts:DecodeAuthorizationMessage | Read |
sts:GetAccessKeyInfo | Read |
sts:GetCallerIdentity | Read |
sts:GetDelegatedAccessToken | Read |
sts:GetFederationToken | Read |
sts:GetServiceBearerToken | Read |
sts:GetSessionToken | Read |
sts:GetWebIdentityToken | Read |
sts:SetContext | Write |
sts:SetSourceIdentity | Write |
sts:TagGetWebIdentityToken | Tagging |
sts:TagSession | Tagging |
Resource Types
ARN patterns for resources in this service.
| Resource | ARN Pattern |
|---|---|
${RelativeId} | arn:aws:iam::${Account}:${RelativeId} |
Condition Keys
Condition keys you can use in IAM policy conditions for this service.
accounts.google.com:audaccounts.google.com:oaudaccounts.google.com:subaws:RequestTag/${TagKey}aws:ResourceTag/${TagKey}aws:TagKeyscognito-identity.amazonaws.com:amrcognito-identity.amazonaws.com:audcognito-identity.amazonaws.com:subgraph.facebook.com:app_idgraph.facebook.com:idiam:ResourceTag/${TagKey}saml:audsaml:cnsaml:commonNamesaml:docsaml:eduorghomepageurisaml:eduorgidentityauthnpolicyurisaml:eduorglegalnamesaml:eduorgsuperiorurisaml:eduorgwhitepagesurisaml:edupersonaffiliationsaml:edupersonassurancesaml:edupersonentitlementsaml:edupersonnicknamesaml:edupersonorgdnsaml:edupersonorgunitdnsaml:edupersonprimaryaffiliationsaml:edupersonprimaryorgunitdnsaml:edupersonprincipalnamesaml:edupersonscopedaffiliationsaml:edupersontargetedidsaml:givenNamesaml:isssaml:mailsaml:namesaml:namequalifiersaml:organizationStatussaml:primaryGroupSIDsaml:subsaml:sub_typesaml:surnamesaml:uidsaml:x500UniqueIdentifiersts:AWSServiceNamests:DurationSecondssts:ExternalIdsts:IdentityTokenAudiencests:RequestContext/${ContextKey}sts:RequestContextProviderssts:RoleSessionNamests:SigningAlgorithmsts:SourceIdentitysts:TaskPolicyArnsts:TransitiveTagKeyswww.amazon.com:app_idwww.amazon.com:user_idLearn AWS the Practical Way
Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.
Subscribe to NewsletterLearn AWS the Practical Way
Our bi-weekly newsletter teaches hands-on AWS fundamentals. No certification fluff - just practical knowledge.
Subscribe to NewsletterQuick Facts
Total Actions16
Prefix
stsResource Types1
Condition Keys57
Access Level Breakdown
Read9
Write2
Permissions3
Tagging2