foundation-security-analyst-role.yaml
AWSTemplateFormatVersion: 2010-09-09 Description: Security Analyst role

Resources

These are all of the resources deployed by this template.

Resources:

Role

This deploys a role with some tags.

SecurityAnalystRole: Type: AWS::IAM::Role Properties: RoleName: fdn-SecurityAnalyst AssumeRolePolicyDocument: Statement: - Effect: "Allow" Principal: Federated: !Sub "arn:aws:iam::${AWS::AccountId}:saml-provider/UA_Shibboleth_IdP" Action: sts:AssumeRoleWithSAML Condition: StringEquals: SAML:aud: https://signin.aws.amazon.com/saml ManagedPolicyArns: - arn:aws:iam::aws:policy/SecurityAudit - arn:aws:iam::aws:policy/AWSSupportAccess
 Policies:
   - Policies

Outputs

Output values that can be viewed from the AWS CloudFormation console.

Outputs: SecurityAnalystRoleArn: Description: The Security Analyst Role's ARN Value: !GetAtt SecurityAnalystRole.Arn