Specifying Settings for Cross-Account IAM Role
If you selected IAM Role from another account at the IAM Mode step of the wizard, specify the following settings:
- In the Account ID field, specify the 12-digit number (or alias) of a trusting account.
The trusting account is an AWS account that owns AWS services and resources, and shares them with the initial AWS account (trusted account).
- In the AWS Role Name field, specify the name of the cross-account IAM role that you want to add. You must specify the name that the IAM role has in AWS.
The cross-account IAM role is created in the trusting account and allows the trusting account to share AWS services and resources with the trusted account.
If the cross-account IAM role was created with a path, you must specify a complete path and a name. For example, dept_1/s3_role.
- In the External ID field, specify an external ID of the cross-account IAM role.
The external ID is a property in the trust policy of the cross-account IAM role used for enhanced security. For details, see AWS Documentation.