我在AWS上使用此策略来尝试将AoC与S3存储桶连接:
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"AWS": "arn:aws:iam::880559705280:role/atp-aws-us-east-1-ts-atc-node"
},
"Action": "sts:AssumeRole",
"Condition": {
"StringLike": {
"sts:ExternalId": "crn:v1:bluemix:public:aspservice-service:global:a/2dd2425e9a424641a12855a1fd5e85ee:70740386-6ca4-4473-bf9b-69a1fd22be12:::c1893698-abfa-4934-a7ca-1a6d837df5e0"
}
}
}
]
}
但是复制到存储桶策略中时,我收到Error: Statement is missing required element.
怎么了?
答案 0 :(得分:0)
您需要将此策略文件粘贴到“角色”标签中的Trust relationship policy
中。