Manages permission sets, account assignments, instances, and SSO configurations for centralized identity and access management across AWS accounts and organizations.
openapi: 3.0.0
info:
version: 2020-07-20
x-release: v4
title: AWS Single Sign-On Admin
description: <p>AWS IAM Identity Center (successor to AWS Single Sign-On) helps you securely create, or connect, your workforce identities and manage their access centrally across AWS accounts and
applications. IAM Identity Center is the recommended approach for workforce authentication and authorization in AWS, for organizations of any size and type.</p> <note> <p>Although AWS Single
Sign-On was renamed, the <code>sso</code> and <code>identitystore</code> API namespaces will continue to retain their original name for backward compatibility purposes. For more information, see
<a href="https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html#renamed">IAM Identity Center rename</a>.</p> </note> <p>This reference guide provides information on single sign-on
operations which could be used for access management of AWS accounts. For information about IAM Identity Center features, see the <a
href="https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html">IAM Identity Center User Guide</a>.</p> <p>Many operations in the IAM Identity Center APIs rely on identifiers for
users and groups, known as principals. For more information about how to work with principals and principal IDs in IAM Identity Center, see the <a
href="https://docs.aws.amazon.com/singlesignon/latest/IdentityStoreAPIReference/welcome.html">Identity Store API Reference</a>.</p> <note> <p>AWS provides SDKs that consist of libraries and sample
code for various programming languages and platforms (Java, Ruby, .Net, iOS, Android, and more). The SDKs provide a convenient way to create programmatic access to IAM Identity Center and other
AWS services. For more information about the AWS SDKs, including how to download and install them, see <a href="http://aws.amazon.com/tools/">Tools for Amazon Web Services</a>.</p> </note>
x-logo:
url: https://api.apis.guru/v2/cache/logo/https_twitter.com_awscloud_profile_image.png
backgroundColor: "#FFFFFF"
termsOfService: https://aws.amazon.com/service-terms/
contact:
name: Mike Ralphson
email: [email protected]
url: https://github.com/mermade/aws2openapi
x-twitter: PermittedSoc
license:
name: Apache 2.0 License
url: http://www.apache.org/licenses/
x-providerName: amazonaws.com
x-serviceName: sso-admin
x-aws-signingName: sso
x-origin:
- contentType: application/json
url: https://raw.githubusercontent.com/aws/aws-sdk-js/master/apis/sso-admin-2020-07-20.normal.json
converter:
url: https://github.com/mermade/aws2openapi
version: 1.0.0
x-apisguru-driver: external
x-apiClientRegistration:
url: https://portal.aws.amazon.com/gp/aws/developer/registration/index.html?nc2=h_ct
x-apisguru-categories:
- cloud
x-preferred: true
externalDocs:
description: Amazon Web Services documentation
url: https://docs.aws.amazon.com/sso/
servers:
- url: http://sso.{region}.amazonaws.com
variables:
region:
description: The AWS region
enum:
- us-east-1
- us-east-2
- us-west-1
- us-west-2
- us-gov-west-1
- us-gov-east-1
- ca-central-1
- eu-north-1
- eu-west-1
- eu-west-2
- eu-west-3
- eu-central-1
- eu-south-1
- af-south-1
- ap-northeast-1
- ap-northeast-2
- ap-northeast-3
- ap-southeast-1
- ap-southeast-2
- ap-east-1
- ap-south-1
- sa-east-1
- me-south-1
default: us-east-1
description: The SSO Admin multi-region endpoint
- url: https://sso.{region}.amazonaws.com
variables:
region:
description: The AWS region
enum:
- us-east-1
- us-east-2
- us-west-1
- us-west-2
- us-gov-west-1
- us-gov-east-1
- ca-central-1
- eu-north-1
- eu-west-1
- eu-west-2
- eu-west-3
- eu-central-1
- eu-south-1
- af-south-1
- ap-northeast-1
- ap-northeast-2
- ap-northeast-3
- ap-southeast-1
- ap-southeast-2
- ap-east-1
- ap-south-1
- sa-east-1
- me-south-1
default: us-east-1
description: The SSO Admin multi-region endpoint
- url: http://sso.{region}.amazonaws.com.cn
variables:
region:
description: The AWS region
enum:
- cn-north-1
- cn-northwest-1
default: cn-north-1
description: The SSO Admin endpoint for China (Beijing) and China (Ningxia)
- url: https://sso.{region}.amazonaws.com.cn
variables:
region:
description: The AWS region
enum:
- cn-north-1
- cn-northwest-1
default: cn-north-1
description: The SSO Admin endpoint for China (Beijing) and China (Ningxia)
x-hasEquivalentPaths: true
paths:
/#X-Amz-Target=SWBExternalService.AttachCustomerManagedPolicyReferenceToPermissionSet:
post:
operationId: AttachCustomerManagedPolicyReferenceToPermissionSet
description: Attaches the specified customer managed policy to the specified <a>PermissionSet</a>.
responses:
"200":
description: Success
content:
application/json:
schema:
$ref: "#/components/schemas/AttachCustomerManagedPolicyReferenceToPermissionSetResponse"
"480":
description: ResourceNotFoundException
content:
application/json:
schema:
$ref: "#/components/schemas/ResourceNotFoundException"
"481":
description: InternalServerException
content:
application/json:
schema:
$ref: "#/components/schemas/InternalServerException"
"482":
description: ServiceQuotaExceededException
content:
application/json:
schema:
$ref: "#/components/schemas/ServiceQuotaExceededException"
"483":
description: ThrottlingException
content:
application/json:
schema:
$ref: "#/components/schemas/ThrottlingException"
"484":
description: ValidationException
content:
application/json:
schema:
$ref: "#/components/schemas/ValidationException"
"485":
description: AccessDeniedException
content:
application/json:
schema:
$ref: "#/components/schemas/AccessDeniedException"
"486":
description: ConflictException
content:
application/json:
schema:
$ref: "#/components/schemas/ConflictException"
requestBody:
required: true
content:
application/json:
schema:
$ref: "#/components/schemas/AttachCustomerManagedPolicyReferenceToPermissionSetRequest"
parameters:
- name: X-Amz-Target
in: header
required: true
schema:
type: string
enum:
- SWBExternalService.AttachCustomerManagedPolicyReferenceToPermissionSet
summary: Amazon IAM Identity Center Attach Customer Managed Policy Reference to Permission Set
x-microcks-operation:
delay: 0
dispatcher: FALLBACK
parameters:
- $ref: "#/components/parameters/X-Amz-Content-Sha256"
- $ref: "#/components/parameters/X-Amz-Date"
- $ref: "#/components/parameters/X-Amz-Algorithm"
- $ref: "#/components/parameters/X-Amz-Credential"
- $ref: "#/components/parameters/X-Amz-Security-Token"
- $ref: "#/components/parameters/X-Amz-Signature"
- $ref: "#/components/parameters/X-Amz-SignedHeaders"
/#X-Amz-Target=SWBExternalService.AttachManagedPolicyToPermissionSet:
post:
operationId: AttachManagedPolicyToPermissionSet
description: <p>Attaches an AWS managed policy ARN to a permission set.</p> <note> <p>If the permission set is already referenced by one or more account assignments, you will need to call <code>
<a>ProvisionPermissionSet</a> </code> after this operation. Calling <code>ProvisionPermissionSet</code> applies the corresponding IAM policy updates to all assigned accounts.</p> </note>
responses:
"200":
description: Success
content:
application/json:
schema:
$ref: "#/components/schemas/AttachManagedPolicyToPermissionSetResponse"
"480":
description: ResourceNotFoundException
content:
application/json:
schema:
$ref: "#/components/schemas/ResourceNotFoundException"
"481":
description: InternalServerException
content:
application/json:
schema:
$ref: "#/components/schemas/InternalServerException"
"482":
description: ServiceQuotaExceededException
content:
application/json:
schema:
$ref: "#/components/schemas/ServiceQuotaExceededException"
"483":
description: ThrottlingException
content:
application/json:
schema:
$ref: "#/components/schemas/ThrottlingException"
"484":
description: ValidationException
content:
application/json:
schema:
$ref: "#/components/schemas/ValidationException"
"485":
description: AccessDeniedException
content:
application/json:
schema:
$ref: "#/components/schemas/AccessDeniedException"
"486":
description: ConflictException
content:
application/json:
schema:
$ref: "#/components/schemas/ConflictException"
requestBody:
required: true
content:
application/json:
schema:
$ref: "#/components/schemas/AttachManagedPolicyToPermissionSetRequest"
parameters:
- name: X-Amz-Target
in: header
required: true
schema:
type: string
enum:
- SWBExternalService.AttachManagedPolicyToPermissionSet
summary: Amazon IAM Identity Center Attach Managed Policy to Permission Set
x-microcks-operation:
delay: 0
dispatcher: FALLBACK
parameters:
- $ref: "#/components/parameters/X-Amz-Content-Sha256"
- $ref: "#/components/parameters/X-Amz-Date"
- $ref: "#/components/parameters/X-Amz-Algorithm"
- $ref: "#/components/parameters/X-Amz-Credential"
- $ref: "#/components/parameters/X-Amz-Security-Token"
- $ref: "#/components/parameters/X-Amz-Signature"
- $ref: "#/components/parameters/X-Amz-SignedHeaders"
/#X-Amz-Target=SWBExternalService.CreateAccountAssignment:
post:
operationId: CreateAccountAssignment
description: <p>Assigns access to a principal for a specified AWS account using a specified permission set.</p> <note> <p>The term <i>principal</i> here refers to a user or group that is defined
in IAM Identity Center.</p> </note> <note> <p>As part of a successful <code>CreateAccountAssignment</code> call, the specified permission set will automatically be provisioned to the account
in the form of an IAM policy. That policy is attached to the IAM role created in IAM Identity Center. If the permission set is subsequently updated, the corresponding IAM policies attached to
roles in your accounts will not be updated automatically. In this case, you must call <code> <a>ProvisionPermissionSet</a> </code> to make these updates.</p> </note> <note> <p> After a
successful response, call <code>DescribeAccountAssignmentCreationStatus</code> to describe the status of an assignment creation request. </p> </note>
responses:
"200":
description: Success
content:
application/json:
schema:
$ref: "#/components/schemas/CreateAccountAssignmentResponse"
"480":
description: ResourceNotFoundException
content:
application/json:
schema:
$ref: "#/components/schemas/ResourceNotFoundException"
"481":
description: InternalServerException
content:
application/json:
schema:
$ref: "#/components/schemas/InternalServerException"
"482":
description: ServiceQuotaExceededException
content:
application/json:
schema:
$ref: "#/components/schemas/ServiceQuotaExceededException"
"483":
description: ThrottlingException
content:
application/json:
schema:
$ref: "#/components/schemas/ThrottlingException"
"484":
description: ValidationException
content:
application/json:
schema:
$ref: "#/components/schemas/ValidationException"
"485":
description: AccessDeniedException
content:
application/json:
schema:
$ref: "#/components/schemas/AccessDeniedException"
"486":
description: ConflictException
content:
application/json:
schema:
$ref: "#/components/schemas/ConflictException"
requestBody:
required: true
content:
application/json:
schema:
$ref: "#/components/schemas/CreateAccountAssignmentRequest"
parameters:
- name: X-Amz-Target
in: header
required: true
schema:
type: string
enum:
- SWBExternalService.CreateAccountAssignment
summary: Amazon IAM Identity Center Create Account Assignment
x-microcks-operation:
delay: 0
dispatcher: FALLBACK
parameters:
- $ref: "#/components/parameters/X-Amz-Content-Sha256"
- $ref: "#/components/parameters/X-Amz-Date"
- $ref: "#/components/parameters/X-Amz-Algorithm"
- $ref: "#/components/parameters/X-Amz-Credential"
- $ref: "#/components/parameters/X-Amz-Security-Token"
- $ref: "#/components/parameters/X-Amz-Signature"
- $ref: "#/components/parameters/X-Amz-SignedHeaders"
/#X-Amz-Target=SWBExternalService.CreateInstanceAccessControlAttributeConfiguration:
post:
operationId: CreateInstanceAccessControlAttributeConfiguration
description: <p>Enables the attributes-based access control (ABAC) feature for the specified IAM Identity Center instance. You can also specify new attributes to add to your ABAC configuration
during the enabling process. For more information about ABAC, see <a href="/singlesignon/latest/userguide/abac.html">Attribute-Based Access Control</a> in the <i>IAM Identity Center User
Guide</i>.</p> <note> <p>After a successful response, call <code>DescribeInstanceAccessControlAttributeConfiguration</code> to validate that
<code>InstanceAccessControlAttributeConfiguration</code> was created.</p> </note>
responses:
"200":
description: Success
content:
application/json:
schema:
$ref: "#/components/schemas/CreateInstanceAccessControlAttributeConfigurationResponse"
"480":
description: InternalServerException
content:
application/json:
schema:
$ref: "#/components/schemas/InternalServerException"
"481":
description: AccessDeniedException
content:
application/json:
schema:
$ref: "#/components/schemas/AccessDeniedException"
"482":
description: ThrottlingException
content:
application/json:
schema:
$ref: "#/components/schemas/ThrottlingException"
"483":
description: ValidationException
content:
application/json:
schema:
$ref: "#/components/schemas/ValidationException"
"484":
description: ResourceNotFoundException
content:
application/json:
schema:
$ref: "#/components/schemas/ResourceNotFoundException"
"485":
description: ConflictException
content:
application/json:
schema:
$ref: "#/components/schemas/ConflictException"
requestBody:
required: true
content:
application/json:
schema:
$ref: "#/components/schemas/CreateInstanceAccessControlAttributeConfigurationRequest"
parameters:
- name: X-Amz-Target
in: header
required: true
schema:
type: string
enum:
- SWBExternalService.CreateInstanceAccessControlAttributeConfiguration
summary: Amazon IAM Identity Center Create Instance Access Control Attribute Configuration
x-microcks-operation:
delay: 0
dispatcher: FALLBACK
parameters:
- $ref: "#/components/parameters/X-Amz-Content-Sha256"
- $ref: "#/components/parameters/X-Amz-Date"
- $ref: "#/components/parameters/X-Amz-Algorithm"
- $ref: "#/components/parameters/X-Amz-Credential"
- $ref: "#/components/parameters/X-Amz-Security-Token"
- $ref: "#/components/parameters/X-Amz-Signature"
- $ref: "#/components/parameters/X-Amz-SignedHeaders"
/#X-Amz-Target=SWBExternalService.CreatePermissionSet:
post:
operationId: CreatePermissionSet
description: <p>Creates a permission set within a specified IAM Identity Center instance.</p> <note> <p>To grant users and groups access to AWS account resources, use <code>
<a>CreateAccountAssignment</a> </code>.</p> </note>
responses:
"200":
description: Success
content:
application/json:
schema:
$ref: "#/components/schemas/CreatePermissionSetResponse"
"480":
description: ResourceNotFoundException
content:
application/json:
schema:
$ref: "#/components/schemas/ResourceNotFoundException"
"481":
description: InternalServerException
content:
application/json:
schema:
$ref: "#/components/schemas/InternalServerException"
"482":
description: ServiceQuotaExceededException
content:
application/json:
schema:
$ref: "#/components/schemas/ServiceQuotaExceededException"
"483":
description: ThrottlingException
content:
application/json:
schema:
$ref: "#/components/schemas/ThrottlingException"
"484":
description: ValidationException
content:
application/json:
schema:
$ref: "#/components/schemas/ValidationException"
"485":
description: AccessDeniedException
content:
application/json:
schema:
$ref: "#/components/schemas/AccessDeniedException"
"486":
description: ConflictException
content:
application/json:
schema:
$ref: "#/components/schemas/ConflictException"
requestBody:
required: true
content:
application/json:
schema:
$ref: "#/components/schemas/CreatePermissionSetRequest"
parameters:
- name: X-Amz-Target
in: header
required: true
schema:
type: string
enum:
- SWBExternalService.CreatePermissionSet
summary: Amazon IAM Identity Center Create Permission Set
x-microcks-operation:
delay: 0
dispatcher: FALLBACK
parameters:
- $ref: "#/components/parameters/X-Amz-Content-Sha256"
- $ref: "#/components/parameters/X-Amz-Date"
- $ref: "#/components/parameters/X-Amz-Algorithm"
- $ref: "#/components/parameters/X-Amz-Credential"
- $ref: "#/components/parameters/X-Amz-Security-Token"
- $ref: "#/components/parameters/X-Amz-Signature"
- $ref: "#/components/parameters/X-Amz-SignedHeaders"
/#X-Amz-Target=SWBExternalService.DeleteAccountAssignment:
post:
operationId: DeleteAccountAssignment
description: <p>Deletes a principal's access from a specified AWS account using a specified permission set.</p> <note> <p>After a successful response, call
<code>DescribeAccountAssignmentCreationStatus</code> to describe the status of an assignment deletion request.</p> </note>
responses:
"200":
description: Success
content:
application/json:
schema:
$ref: "#/components/schemas/DeleteAccountAssignmentResponse"
"480":
description: ResourceNotFoundException
content:
application/json:
schema:
$ref: "#/components/schemas/ResourceNotFoundException"
"481":
description: InternalServerException
content:
application/json:
schema:
$ref: "#/components/schemas/InternalServerException"
"482":
description: ThrottlingException
content:
application/json:
schema:
$ref: "#/components/schemas/ThrottlingException"
"483":
description: ValidationException
content:
application/json:
schema:
$ref: "#/components/schemas/ValidationException"
"484":
description: AccessDeniedException
content:
application/json:
schema:
$ref: "#/components/schemas/AccessDeniedException"
"485":
description: ConflictException
content:
application/json:
schema:
$ref: "#/components/schemas/ConflictException"
requestBody:
required: true
content:
application/json:
schema:
$ref: "#/components/schemas/DeleteAccountAssignmentRequest"
parameters:
- name: X-Amz-Target
in: header
required: true
schema:
type: string
enum:
- SWBExternalService.DeleteAccountAssignment
summary: Amazon IAM Identity Center Delete Account Assignment
x-microcks-operation:
delay: 0
dispatcher: FALLBACK
parameters:
- $ref: "#/components/parameters/X-Amz-Content-Sha256"
- $ref: "#/components/parameters/X-Amz-Date"
- $ref: "#/components/parameters/X-Amz-Algorithm"
- $ref: "#/components/parameters/X-Amz-Credential"
- $ref: "#/components/parameters/X-Amz-Security-Token"
- $ref: "#/components/parameters/X-Amz-Signature"
- $ref: "#/components/parameters/X-Amz-SignedHeaders"
/#X-Amz-Target=SWBExternalService.DeleteInlinePolicyFromPermissionSet:
post:
operationId: DeleteInlinePolicyFromPermissionSet
description: Deletes the inline policy from a specified permission set.
responses:
"200":
description: Success
content:
application/json:
schema:
$ref: "#/components/schemas/DeleteInlinePolicyFromPermissionSetResponse"
"480":
description: ResourceNotFoundException
content:
application/json:
schema:
$ref: "#/components/schemas/ResourceNotFoundException"
"481":
description: InternalServerException
content:
application/json:
schema:
$ref: "#/components/schemas/InternalServerException"
"482":
description: ThrottlingException
content:
application/json:
schema:
$ref: "#/components/schemas/ThrottlingException"
"483":
description: ValidationException
content:
application/json:
schema:
$ref: "#/components/schemas/ValidationException"
"484":
description: AccessDeniedException
content:
application/json:
schema:
$ref: "#/components/schemas/AccessDeniedException"
"485":
description: ConflictException
content:
application/json:
schema:
$ref: "#/components/schemas/ConflictException"
requestBody:
required: true
content:
application/json:
schema:
$ref: "#/components/schemas/DeleteInlinePolicyFromPermissionSetRequest"
parameters:
- name: X-Amz-Target
in: header
required: true
schema:
type: string
enum:
- SWBExternalService.DeleteInlinePolicyFromPermissionSet
summary: Amazon IAM Identity Center Delete Inline Policy from Permission Set
x-microcks-operation:
delay: 0
dispatcher: FALLBACK
parameters:
- $ref: "#/components/parameters/X-Amz-Content-Sha256"
- $ref: "#/components/parameters/X-Amz-Date"
- $ref: "#/components/parameters/X-Amz-Algorithm"
- $ref: "#/components/parameters/X-Amz-Credential"
- $ref: "#/components/parameters/X-Amz-Security-Token"
- $ref: "#/components/parameters/X-Amz-Signature"
- $ref: "#/components/parameters/X-Amz-SignedHeaders"
/#X-Amz-Target=SWBExternalService.DeleteInstanceAccessControlAttributeConfiguration:
post:
operationId: DeleteInstanceAccessControlAttributeConfiguration
description: Disables the attributes-based access control (ABAC) feature for the specified IAM Identity Center instance and deletes all of the attribute mappings that have been configured. Once
deleted, any attributes that are received from an identity source and any custom attributes you have previously configured will not be passed. For more information about ABAC, see <a
href="/singlesignon/latest/userguide/abac.html">Attribute-Based Access Control</a> in the <i>IAM Identity Center User Guide</i>.
responses:
"200":
description: Success
content:
application/json:
schema:
$ref: "#/components/schemas/DeleteInstanceAccessControlAttributeConfigurationResponse"
"480":
description: InternalServerException
content:
application/json:
schema:
$ref: "#/components/schemas/InternalServerException"
"481":
description: AccessDeniedException
content:
application/json:
schema:
$ref: "#/components/schemas/AccessDeniedException"
"482":
description: ThrottlingException
content:
application/json:
schema:
$ref: "#/components/schemas/ThrottlingException"
"483":
description: ValidationException
content:
application/json:
schema:
$ref: "#/components/schemas/ValidationException"
"484":
description: ResourceNotFoundException
content:
application/json:
schema:
$ref: "#/components/schemas/ResourceNotFoundException"
"485":
description: ConflictException
content:
application/json:
schema:
$ref: "#/components/schemas/ConflictException"
requestBody:
required: true
content:
application/json:
schema:
$ref: "#/components/schemas/DeleteInstanceAccessControlAttributeConfigurationRequest"
parameters:
- name: X-Amz-Target
in: header
required: true
schema:
type: string
enum:
- SWBExternalService.DeleteInstanceAccessControlAttributeConfiguration
summary: Amazon IAM Identity Center Delete Instance Access Control Attribute Configuration
x-microcks-operation:
delay: 0
dispatcher: FALLBACK
parameters:
- $ref: "#/components/parameters/X-Amz-Content-Sha256"
- $ref: "#/components/parameters/X-Amz-Date"
- $ref: "#/components/parameters/X-Amz-Algorithm"
- $ref: "#/components/parameters/X-Amz-Credential"
- $ref: "#/components/parameters/X-Amz-Security-Token"
- $ref: "#/components/parameters/X-Amz-Signature"
- $ref: "#/components/parameters/X-Amz-SignedHeaders"
/#X-Amz-Target=SWBExternalService.DeletePermissionSet:
post:
operationId: DeletePermissionSet
description: Deletes the specified permission set.
responses:
"200":
description: Success
content:
application/json:
schema:
$ref: "#/components/schemas/DeletePermissionSetResponse"
"480":
description: ResourceNotFoundException
content:
application/json:
schema:
$ref: "#/components/schemas/ResourceNotFoundException"
"481":
description: InternalServerException
content:
application/json:
schema:
$ref: "#/components/schemas/InternalServerException"
"482":
description: ThrottlingException
content:
application/json:
schema:
$ref: "#/components/schemas/ThrottlingException"
"483":
description: ValidationException
content:
application/json:
schema:
$ref: "#/components/schemas/ValidationException"
"484":
description: AccessDeniedException
content:
application/json:
schema:
$ref: "#/components/schemas/AccessDeniedException"
"485":
description: ConflictException
content:
application/json:
schema:
$ref: "#/components/schemas/ConflictException"
requestBody:
required: true
content:
application/json:
schema:
$ref: "#/components/schemas/DeletePermissionSetRequest"
parameters:
- name: X-Amz-Target
in: header
required: true
schema:
type: string
enum:
- SWBExternalService.DeletePermissionSet
summary: Amazon IAM Identity Center Delete Permission Set
x-microcks-operation:
delay: 0
dispatcher: FALLBACK
parameters:
- $ref: "#/components/parameters/X-Amz-Content-Sha256"
- $ref: "#/components/parameters/X-Amz-Date"
- $ref: "#/components/parameters/X-Amz-Algorithm"
- $ref: "#/components/parameters/X-Amz-Credential"
- $ref: "#/components/parameters/X-Amz-Security-Token"
- $ref: "#/components/parameters/X-Amz-Signature"
- $ref: "#/components/parameters/X-Amz-SignedHeaders"
/#X-Amz-Target=SWBExternalService.DeletePermissionsBoundaryFromPermissionSet:
post:
operationId: DeletePermissionsBoundaryFromPermissionSet
description: Deletes the permissions boundary from a specified <a>PermissionSet</a>.
responses:
"200":
description: Success
content:
application/json:
schema:
$ref: "#/components/schemas/DeletePermissionsBoundaryFromPermissionSetResponse"
"480":
description: ResourceNotFoundException
content:
application/json:
schema:
$ref: "#/components/schemas/ResourceNotFoundException"
"481":
description: InternalServerException
content:
application/json:
schema:
$ref: "#/components/schemas/InternalServerException"
"482":
description: ThrottlingException
content:
application/json:
schema:
$ref: "#/components/schemas/ThrottlingException"
"483":
description: ValidationException
content:
application/json:
schema:
$ref: "#/components/schemas/ValidationException"
# --- truncated at 32 KB (171 KB total) ---
# Full source: https://raw.githubusercontent.com/api-evangelist/amazon-iam-identity-center/refs/heads/main/openapi/amazon-iam-identity-center-sso-admin-openapi-original.yml