13 actions in the signin service. Select an action to see its access level, resource ARNs, condition keys, and a copy-paste IAM policy.
Grants permission to authenticate to the AWS Management Console
Grants permission to authenticate through a browser and obtain an OAuth 2.0 authorization code for credential exchange
Grants permission to create an AWS account through the AWS Management Console sign-up flow
Grants permission to exchange an authorization code for OAuth 2.0 access token and refresh token that can be used to access AWS services from developer tools and applications
Grants permission to create an Identity Center application that represents the AWS Management Console on an Identity Center organization instance
Grants permission to disable console authorization configuration for an AWS account or organization
Grants permission to remove a permission statement from the account's SignIn Resource Based Policy
Grants permission to retrieve console authorization configuration for an AWS account or organization
Grants permission to retrieve SignIn Resource Based Policy document that is attached with your account
Grants permission to list the SignIn Resource Based Policy statements in your account
Grants permission to list all Identity Center applications that represent the AWS Management Console
Grants permission to enable console authorization configuration for an AWS account or organization
Grants permission to create a permission statement in the account's SignIn resource-based policy