Suppose
- a user X is managed in Azure AD and linked to an SSO role in AWS organization.
- we want to give IAM policy to access DynamoDB in an AWS account A to the user X.
I created the IAM policy in the Account A.
How can attach the IAM policy to the SSO role for user X?