AWS Identity and Access Management Connector

  • Latest Dynatrace
  • Reference
  • 4-min read
  • Published Mar 28, 2025

Review the required AWS permissions and condition keys of the AWS Identity and Access Management Connector actions to ensure that you grant Dynatrace only a minimum set of permissions. For more information, see AWS documentation.

Attach role policy

Attaches the specified managed policy to the specified IAM role.

For more information, see the official documentation of Attach role policy.

Required AWS permission: iam:AttachRolePolicy.

Inputs

FieldTypeDescriptionRequired
RegionstringThe region to use.required
PolicyArnstringThe Amazon Resource Name (ARN) of the IAM policy you want to attach.required
RoleNamestringThe name (friendly name, not ARN) of the role to attach the policy.required

Output

Returns fields as described in AttachRolePolicyCommandOutput.

Detach role policy

Removes the specified managed policy from the specified role.

For more information, see the official documentation of Detach role policy.

Required AWS permission: iam:DetachRolePolicy.

Inputs

FieldTypeDescriptionRequired
RegionstringThe region to use.required
PolicyArnstringThe Amazon Resource Name (ARN) of the IAM policy you want to detach.required
RoleNamestringThe name (friendly name, not ARN) of the IAM role from which to detach the policy.required

Output

Returns fields as described in DetachRolePolicyCommandOutput.

List role tags

Lists the tags that are attached to the specified role.

For more information, see the official documentation of List role tags.

Required AWS permission: iam:ListRoleTags.

Inputs

FieldTypeDescriptionRequired
RegionstringThe region to use.required
RoleNamestringThe name of the IAM role for which you want to see the list of tags.required
MarkerstringUse this parameter only when paginating results and only after you receive a response indicating that the results are truncated.optional
MaxItemsnumberUse this only when paginating results to indicate the maximum number of items you want in the response.optional

Output

Returns fields as described in ListRoleTagsCommandOutput.

Put role policy

Adds or updates an inline policy document that is embedded in the specified IAM role.

For more information, see the official documentation of Put role policy.

Required AWS permission: iam:PutRolePolicy.

Inputs

FieldTypeDescriptionRequired
RegionstringThe region to use.required
PolicyDocumentstringThe policy document.required
PolicyNamestringThe name of the policy document.required
RoleNamestringThe role name associated with the policy.required

Output

Returns fields as described in PutRolePolicyCommandOutput.

Tag role

Adds one or more tags to an IAM role.

For more information, see the official documentation of Tag role.

Required AWS permission: iam:TagRole.

Inputs

FieldTypeDescriptionRequired
RegionstringThe region to use.required
RoleNamestringThe name of the IAM role to which you want to add tags to.required
TagsTag[]The list of tags you want to attach to the IAM role.required

Output

Returns fields as described in TagRoleCommandOutput.

Untag role

Removes the specified tags from the role.

For more information, see the official documentation of Untag role.

Required AWS permission: iam:UntagRole.

Inputs

FieldTypeDescriptionRequired
RegionstringThe region to use.required
RoleNamestringThe name of the IAM role from which you want to remove tags.required
TagKeysstring[]A list of key names as a simple array of strings.required

Output

Returns fields as described in UntagRoleCommandOutput.

Related tags
Software Delivery