我正在尝试根据环境定义一个变量,以引用ManagedPolicyARN。 这是我的变量定义:
EnvDynamoDbPolicy:
Type: String
AllowedPattern: "^arn:aws:iam::.*"
ConstraintDescription: Must be an IAM policy ARN.
在这里定义此变量:
ManagedPolicyArns:
- ! Ref EnvDynamoDbPolicy
当我定义此值
EnvDynamoDbPolicy: arn:aws:iam::AccountNumber:policy/staging_test_dynamodb
我遇到以下错误:
ARN Ref EnvDynamoDbPolicy is not valid. (Service: AmazonIdentityManagement; Status Code: 400; Error Code: InvalidInput