This is an archive version of the document. To get the most up-to-date information, see the current version.

Specifying Settings for Cross-Account IAM Role

If you selected IAM Role from another account at the IAM Mode step of the wizard, specify the following settings:

In the Account ID field, specify the 12-digit number (or alias) of a trusting account.

The trusting account is an AWS account that owns AWS services and resources, and shares them with the initial AWS account (trusted account).

In the AWS Role Name field, specify the name of the cross-account IAM role that you want to add. You must specify the name that the IAM role has in AWS.

The cross-account IAM role is created in the trusting account and allows the trusting account to share AWS services and resources with the trusted account.

Note

If the cross-account IAM role was created with a path, you must specify a complete path and a name. For example, dept_1/s3_role.

In the External ID field, specify an external ID of the cross-account IAM role.

The external ID is a property in the trust policy of the cross-account IAM role used for enhanced security. For details, see AWS Documentation.