AWS Identity and Access Management Connector

  • Latest Dynatrace
  • Reference
  • 4-min read
  • Published Mar 28, 2025

Review the required AWS permissions and condition keys of the AWS Identity and Access Management Connector actions to ensure that you grant Dynatrace only a minimum set of permissions. For more information, see AWS documentation.

Attach role policy

Attaches the specified managed policy to the specified IAM role.

For more information, see the official documentation of Attach role policy.

Required AWS permission: iam:AttachRolePolicy.

Inputs

Field
Type
Description
Required
Region
string
The region to use.
required
PolicyArn
string
The Amazon Resource Name (ARN) of the IAM policy you want to attach.
required
RoleName
string
The name (friendly name, not ARN) of the role to attach the policy.
required

Output

Returns fields as described in AttachRolePolicyCommandOutput.

Detach role policy

Removes the specified managed policy from the specified role.

For more information, see the official documentation of Detach role policy.

Required AWS permission: iam:DetachRolePolicy.

Inputs

Field
Type
Description
Required
Region
string
The region to use.
required
PolicyArn
string
The Amazon Resource Name (ARN) of the IAM policy you want to detach.
required
RoleName
string
The name (friendly name, not ARN) of the IAM role from which to detach the policy.
required

Output

Returns fields as described in DetachRolePolicyCommandOutput.

List role tags

Lists the tags that are attached to the specified role.

For more information, see the official documentation of List role tags.

Required AWS permission: iam:ListRoleTags.

Inputs

Field
Type
Description
Required
Region
string
The region to use.
required
RoleName
string
The name of the IAM role for which you want to see the list of tags.
required
Marker
string
Use this parameter only when paginating results and only after you receive a response indicating that the results are truncated.
optional
MaxItems
number
Use this only when paginating results to indicate the maximum number of items you want in the response.
optional

Output

Returns fields as described in ListRoleTagsCommandOutput.

Put role policy

Adds or updates an inline policy document that is embedded in the specified IAM role.

For more information, see the official documentation of Put role policy.

Required AWS permission: iam:PutRolePolicy.

Inputs

Field
Type
Description
Required
Region
string
The region to use.
required
PolicyDocument
string
The policy document.
required
PolicyName
string
The name of the policy document.
required
RoleName
string
The role name associated with the policy.
required

Output

Returns fields as described in PutRolePolicyCommandOutput.

Tag role

Adds one or more tags to an IAM role.

For more information, see the official documentation of Tag role.

Required AWS permission: iam:TagRole.

Inputs

Field
Type
Description
Required
Region
string
The region to use.
required
RoleName
string
The name of the IAM role to which you want to add tags to.
required
Tags
Tag[]
The list of tags you want to attach to the IAM role.
required

Output

Returns fields as described in TagRoleCommandOutput.

Untag role

Removes the specified tags from the role.

For more information, see the official documentation of Untag role.

Required AWS permission: iam:UntagRole.

Inputs

Field
Type
Description
Required
Region
string
The region to use.
required
RoleName
string
The name of the IAM role from which you want to remove tags.
required
TagKeys
string[]
A list of key names as a simple array of strings.
required

Output

Returns fields as described in UntagRoleCommandOutput.

Related tags
Software Delivery