The screenshot shows the AWS IAM Role details page for a role named OracleDBKMS_vmc_esr4tv5j5o. The highlighted section displays the role’s ARN, which is the identifier you copy when associating this role with services (for example, enabling Oracle Database@AWS to access AWS KMS). The page also shows recent role activity and the role’s maximum session duration. In the Permissions policies section, an inline policy (e.g., ODB KMS ListKeys) is attached to define what the role is allowed to do.

Copyright © Oracle and/or its affiliates.