> On Nov 28, 2023, at 11:01 AM, Veniamin Gvozdikov <[email protected]>
> wrote:
>
> I actually expected like AWS IAM has:
>
> From AWS documentation: An IAM group is an identity that specifies a
> collection of IAM users. You can't use a group to sign-in. You can use groups
> to specify permissions for multiple users at a time. Groups make permissions
> easier to manage for large sets of users. For example, you could have a group
> named IAMPublishers and give that group the types of permissions that
> publishing workloads typically need.
How is this different than the standard RBAC definition of a Role? Which maps
between a set of users and a set of permissions.
Thanks for opening up this discussion btw. We’ve handled (something like) it
many times over the years but it’s always interesting to revisit as new
technologies come into play.
—
Shawn
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
