Resource Access Manager Resource Share
Resource Access Manager Resource Share in AWS allows you to securely share AWS resources across accounts or within your organization using AWS Organizations. Instead of duplicating resources, you can create a resource share and grant access to specific principals, such as accounts, organizational units, or the entire organization. This helps improve efficiency, reduce costs, and simplify management by enabling centralized sharing of supported resources like subnets, transit gateways, and license configurations.
Fields
| Title | ID | Type | Data Type | Description |
|---|
| _key | core | string | |
| account_id | core | string | |
| allow_external_principals | core | bool | Indicates whether principals outside your organization in Organizations can be associated with a resource share. True – the resource share can be shared with any Amazon Web Services account. False – the resource share can be shared with only accounts in the same organization as the account that owns the resource share. |
| creation_time | core | timestamp | The date and time when the resource share was created. |
| feature_set | core | string | Indicates what features are available for this resource share. This parameter can have one of the following values: STANDARD – A resource share that supports all functionality. These resource shares are visible to all principals you share the resource share with. You can modify these resource shares in RAM using the console or APIs. This resource share might have been created by RAM, or it might have been CREATED_FROM_POLICY and then promoted. CREATED_FROM_POLICY – The customer manually shared a resource by attaching a resource-based policy. That policy did not match any existing managed permissions, so RAM created this customer managed permission automatically on the customer's behalf based on the attached policy document. This type of resource share is visible only to the Amazon Web Services account that created it. You can't modify it in RAM unless you promote it. For more information, see PromoteResourceShareCreatedFromPolicy. PROMOTING_TO_STANDARD – This resource share was originally CREATED_FROM_POLICY, but the customer ran the PromoteResourceShareCreatedFromPolicy and that operation is still in progress. This value changes to STANDARD when complete. |
| last_updated_time | core | timestamp | The date and time when the resource share was last updated. |
| name | core | string | The name of the resource share. |
| owning_account_id | core | string | The ID of the Amazon Web Services account that owns the resource share. |
| resource_share_arn | core | string | The Amazon Resource Name (ARN) of the resource share |
| status | core | string | The current status of the resource share. |
| status_message | core | string | A message about the status of the resource share. |
| tags | core | hstore | |
