Secrets Manager Secrets IAM Policy to Permit Multi-Account Access

Jan 21, 2022

Secrets Manager Secrets IAM Policy to Permit Multi-Account Access

Amazon Web Services AWS Secrets Manager

Kyler MiddletonCloud IAM Advocate at IAM Pulse

Website
Twitter
LinkedIn
GitHub

{{ }} Substitute variables

Adjust the variable values according to your preference.

Policy Code

Referenced from: https://docs.aws.amazon.com/mediaconnect/latest/ug/iam-policy-examples-asm-secrets.html

1{
2  "Version" : "2012-10-17",
3  "Statement" : [
4    {
5      "Sid" : "Secrets Manager Secrets Cross Account Policy",
6      "Effect" : "Allow",
7      "Action" : "secretsmanager:GetSecretValue",
8      "Resource" : "*",
9      "Principal" : {
10        "AWS" : [
11          "arn:aws:iam::{{account-id1}}:role/{{role-name1}}",
12          "arn:aws:iam::{{account-id2}}:role/{{role-name2}}"
13         ]
14      }
15    }
16  ]
17}

We send out a periodic newsletter full of tips & tricks, contributions from the community, commentary on the industry, relevant social posts, and more.

Checkout past issues for a sampling of the goods.

Secrets Manager Secrets IAM Policy to Permit Multi-Account Access

Get the IAM Pulse Check Newsletter