I would like to specify the ARN of a permission boundary policy as a parameter in the main.yaml template and have this applied to all IAM roles created by the Datadog cloudformation templates.
Actual Behavior
Currently there is a PermissionsBoundaryArn parameter defined on the forwarder latest.yaml template to set a permission boundary on the ForwarderRole and ForwarderZipCopierRole IAM roles within this template, but there is no such parameter to set a permission boundary on the integration role.
Expected Behavior
I would like to specify the ARN of a permission boundary policy as a parameter in the main.yaml template and have this applied to all IAM roles created by the Datadog cloudformation templates.
Actual Behavior
Currently there is a
PermissionsBoundaryArn
parameter defined on the forwarder latest.yaml template to set a permission boundary on the ForwarderRole and ForwarderZipCopierRole IAM roles within this template, but there is no such parameter to set a permission boundary on the integration role.