Package-level declarations
Types
Identity and Access Management Roles Anywhere provides a secure way for your workloads such as servers, containers, and applications that run outside of Amazon Web Services to obtain temporary Amazon Web Services credentials. Your workloads can use the same IAM policies and roles you have for native Amazon Web Services applications to access Amazon Web Services resources. Using IAM Roles Anywhere eliminates the need to manage long-term credentials for workloads running outside of Amazon Web Services.
Functions
Creates a profile, a list of the roles that Roles Anywhere service is trusted to assume. You use profiles to intersect permissions with IAM managed policies.
Creates a trust anchor to establish trust between IAM Roles Anywhere and your certificate authority (CA). You can define a trust anchor as a reference to an Private Certificate Authority (Private CA) or by uploading a CA certificate. Your Amazon Web Services workloads can authenticate with the trust anchor using certificates issued by the CA in exchange for temporary Amazon Web Services credentials.
Deletes a certificate revocation list (CRL).
Deletes a profile.
Deletes a trust anchor.
Disables a certificate revocation list (CRL).
Disables a profile. When disabled, temporary credential requests with this profile fail.
Disables a trust anchor. When disabled, temporary credential requests specifying this trust anchor are unauthorized.
Enables a certificate revocation list (CRL). When enabled, certificates stored in the CRL are unauthorized to receive session credentials.
Enables temporary credential requests for a profile.
Enables a trust anchor. When enabled, certificates in the trust anchor chain are authorized for trust validation.
Gets a certificate revocation list (CRL).
Gets a profile.
Gets a subject, which associates a certificate identity with authentication attempts. The subject stores auditing information such as the status of the last authentication attempt, the certificate data used in the attempt, and the last time the associated identity attempted authentication.
Gets a trust anchor.
Imports the certificate revocation list (CRL). A CRL is a list of certificates that have been revoked by the issuing certificate Authority (CA). IAM Roles Anywhere validates against the CRL before issuing credentials.
Lists all certificate revocation lists (CRL) in the authenticated account and Amazon Web Services Region.
Lists all profiles in the authenticated account and Amazon Web Services Region.
Lists the subjects in the authenticated account and Amazon Web Services Region.
Lists the tags attached to the resource.
Lists the trust anchors in the authenticated account and Amazon Web Services Region.
Attaches a list of notification settings to a trust anchor.
Resets the custom notification setting to IAM Roles Anywhere default setting.
Attaches tags to a resource.
Removes tags from the resource.
Updates the certificate revocation list (CRL). A CRL is a list of certificates that have been revoked by the issuing certificate authority (CA). IAM Roles Anywhere validates against the CRL before issuing credentials.
Updates a profile, a list of the roles that IAM Roles Anywhere service is trusted to assume. You use profiles to intersect permissions with IAM managed policies.
Updates a trust anchor. You establish trust between IAM Roles Anywhere and your certificate authority (CA) by configuring a trust anchor. You can define a trust anchor as a reference to an Private Certificate Authority (Private CA) or by uploading a CA certificate. Your Amazon Web Services workloads can authenticate with the trust anchor using certificates issued by the CA in exchange for temporary Amazon Web Services credentials.
Create a copy of the client with one or more configuration values overridden. This method allows the caller to perform scoped config overrides for one or more client operations.