aws-sdk-ssoadmin 1.28.0 → 1.29.0

data/lib/aws-sdk-ssoadmin/client.rb

@@ -401,6 +401,11 @@ module Aws::SSOAdmin
     # Attaches the specified customer managed policy to the specified
     # PermissionSet.
     #
+    # @option params [required, Types::CustomerManagedPolicyReference] :customer_managed_policy_reference
+    #   Specifies the name and path of a customer managed policy. You must
+    #   have an IAM policy that matches the name and path in each Amazon Web
+    #   Services account where you want to deploy your permission set.
+    #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed.
@@ -408,22 +413,17 @@ module Aws::SSOAdmin
     # @option params [required, String] :permission_set_arn
     #   The ARN of the `PermissionSet`.
     #
-    # @option params [required, Types::CustomerManagedPolicyReference] :customer_managed_policy_reference
-    #   Specifies the name and path of a customer managed policy. You must
-    #   have an IAM policy that matches the name and path in each AWS account
-    #   where you want to deploy your permission set.
-    #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.attach_customer_managed_policy_reference_to_permission_set({
-    #     instance_arn: "InstanceArn", # required
-    #     permission_set_arn: "PermissionSetArn", # required
     #     customer_managed_policy_reference: { # required
     #       name: "ManagedPolicyName", # required
     #       path: "ManagedPolicyPath",
     #     },
+    #     instance_arn: "InstanceArn", # required
+    #     permission_set_arn: "PermissionSetArn", # required
     #   })
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/AttachCustomerManagedPolicyReferenceToPermissionSet AWS API Documentation
@@ -435,7 +435,8 @@ module Aws::SSOAdmin
       req.send_request(options)
     end
 
-    # Attaches an AWS managed policy ARN to a permission set.
+    # Attaches an Amazon Web Services managed policy ARN to a permission
+    # set.
     #
     # <note markdown="1"> If the permission set is already referenced by one or more account
     # assignments, you will need to call ` ProvisionPermissionSet ` after
@@ -447,25 +448,26 @@ module Aws::SSOAdmin
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
+    #
+    # @option params [required, String] :managed_policy_arn
+    #   The Amazon Web Services managed policy ARN to be attached to a
+    #   permission set.
     #
     # @option params [required, String] :permission_set_arn
     #   The ARN of the PermissionSet that the managed policy should be
     #   attached to.
     #
-    # @option params [required, String] :managed_policy_arn
-    #   The AWS managed policy ARN to be attached to a permission set.
-    #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.attach_managed_policy_to_permission_set({
     #     instance_arn: "InstanceArn", # required
-    #     permission_set_arn: "PermissionSetArn", # required
     #     managed_policy_arn: "ManagedPolicyArn", # required
+    #     permission_set_arn: "PermissionSetArn", # required
     #   })
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/AttachManagedPolicyToPermissionSet AWS API Documentation
@@ -477,8 +479,8 @@ module Aws::SSOAdmin
       req.send_request(options)
     end
 
-    # Assigns access to a principal for a specified AWS account using a
-    # specified permission set.
+    # Assigns access to a principal for a specified Amazon Web Services
+    # account using a specified permission set.
     #
     # <note markdown="1"> The term *principal* here refers to a user or group that is defined in
     # IAM Identity Center.
@@ -504,24 +506,14 @@ module Aws::SSOAdmin
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
-    #
-    # @option params [required, String] :target_id
-    #   TargetID is an AWS account identifier, typically a 10-12 digit string
-    #   (For example, 123456789012).
-    #
-    # @option params [required, String] :target_type
-    #   The entity type for which the assignment will be created.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [required, String] :permission_set_arn
     #   The ARN of the permission set that the admin wants to grant the
     #   principal access to.
     #
-    # @option params [required, String] :principal_type
-    #   The entity type for which the assignment will be created.
-    #
     # @option params [required, String] :principal_id
     #   An identifier for an object in IAM Identity Center, such as a user or
     #   group. PrincipalIds are GUIDs (For example,
@@ -530,6 +522,16 @@ module Aws::SSOAdmin
     #   Identity Store API
     #   Reference](/singlesignon/latest/IdentityStoreAPIReference/welcome.html).
     #
+    # @option params [required, String] :principal_type
+    #   The entity type for which the assignment will be created.
+    #
+    # @option params [required, String] :target_id
+    #   TargetID is an Amazon Web Services account identifier, (For example,
+    #   123456789012).
+    #
+    # @option params [required, String] :target_type
+    #   The entity type for which the assignment will be created.
+    #
     # @return [Types::CreateAccountAssignmentResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::CreateAccountAssignmentResponse#account_assignment_creation_status #account_assignment_creation_status} => Types::AccountAssignmentOperationStatus
@@ -538,24 +540,24 @@ module Aws::SSOAdmin
     #
     #   resp = client.create_account_assignment({
     #     instance_arn: "InstanceArn", # required
-    #     target_id: "TargetId", # required
-    #     target_type: "AWS_ACCOUNT", # required, accepts AWS_ACCOUNT
     #     permission_set_arn: "PermissionSetArn", # required
-    #     principal_type: "USER", # required, accepts USER, GROUP
     #     principal_id: "PrincipalId", # required
+    #     principal_type: "USER", # required, accepts USER, GROUP
+    #     target_id: "TargetId", # required
+    #     target_type: "AWS_ACCOUNT", # required, accepts AWS_ACCOUNT
     #   })
     #
     # @example Response structure
     #
-    #   resp.account_assignment_creation_status.status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
-    #   resp.account_assignment_creation_status.request_id #=> String
+    #   resp.account_assignment_creation_status.created_date #=> Time
     #   resp.account_assignment_creation_status.failure_reason #=> String
-    #   resp.account_assignment_creation_status.target_id #=> String
-    #   resp.account_assignment_creation_status.target_type #=> String, one of "AWS_ACCOUNT"
     #   resp.account_assignment_creation_status.permission_set_arn #=> String
-    #   resp.account_assignment_creation_status.principal_type #=> String, one of "USER", "GROUP"
     #   resp.account_assignment_creation_status.principal_id #=> String
-    #   resp.account_assignment_creation_status.created_date #=> Time
+    #   resp.account_assignment_creation_status.principal_type #=> String, one of "USER", "GROUP"
+    #   resp.account_assignment_creation_status.request_id #=> String
+    #   resp.account_assignment_creation_status.status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
+    #   resp.account_assignment_creation_status.target_id #=> String
+    #   resp.account_assignment_creation_status.target_type #=> String, one of "AWS_ACCOUNT"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/CreateAccountAssignment AWS API Documentation
     #
@@ -579,10 +581,6 @@ module Aws::SSOAdmin
     #
     #  </note>
     #
-    # @option params [required, String] :instance_arn
-    #   The ARN of the IAM Identity Center instance under which the operation
-    #   will be executed.
-    #
     # @option params [required, Types::InstanceAccessControlAttributeConfiguration] :instance_access_control_attribute_configuration
     #   Specifies the IAM Identity Center identity store attributes to add to
     #   your ABAC configuration. When using an external identity provider as
@@ -593,12 +591,15 @@ module Aws::SSOAdmin
     #   attribute value with the value from the IAM Identity Center identity
     #   store.
     #
+    # @option params [required, String] :instance_arn
+    #   The ARN of the IAM Identity Center instance under which the operation
+    #   will be executed.
+    #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.create_instance_access_control_attribute_configuration({
-    #     instance_arn: "InstanceArn", # required
     #     instance_access_control_attribute_configuration: { # required
     #       access_control_attributes: [ # required
     #         {
@@ -609,6 +610,7 @@ module Aws::SSOAdmin
     #         },
     #       ],
     #     },
+    #     instance_arn: "InstanceArn", # required
     #   })
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/CreateInstanceAccessControlAttributeConfiguration AWS API Documentation
@@ -623,32 +625,32 @@ module Aws::SSOAdmin
     # Creates a permission set within a specified IAM Identity Center
     # instance.
     #
-    # <note markdown="1"> To grant users and groups access to AWS account resources, use `
-    # CreateAccountAssignment `.
+    # <note markdown="1"> To grant users and groups access to Amazon Web Services account
+    # resources, use ` CreateAccountAssignment `.
     #
     #  </note>
     #
-    # @option params [required, String] :name
-    #   The name of the PermissionSet.
-    #
     # @option params [String] :description
     #   The description of the PermissionSet.
     #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
     #
-    # @option params [String] :session_duration
-    #   The length of time that the application user sessions are valid in the
-    #   ISO-8601 standard.
+    # @option params [required, String] :name
+    #   The name of the PermissionSet.
     #
     # @option params [String] :relay_state
     #   Used to redirect users within the application during the federation
     #   authentication process.
     #
+    # @option params [String] :session_duration
+    #   The length of time that the application user sessions are valid in the
+    #   ISO-8601 standard.
+    #
     # @option params [Array<Types::Tag>] :tags
     #   The tags to attach to the new PermissionSet.
     #
@@ -659,11 +661,11 @@ module Aws::SSOAdmin
     # @example Request syntax with placeholder values
     #
     #   resp = client.create_permission_set({
-    #     name: "PermissionSetName", # required
     #     description: "PermissionSetDescription",
     #     instance_arn: "InstanceArn", # required
-    #     session_duration: "Duration",
+    #     name: "PermissionSetName", # required
     #     relay_state: "RelayState",
+    #     session_duration: "Duration",
     #     tags: [
     #       {
     #         key: "TagKey", # required
@@ -674,12 +676,12 @@ module Aws::SSOAdmin
     #
     # @example Response structure
     #
+    #   resp.permission_set.created_date #=> Time
+    #   resp.permission_set.description #=> String
     #   resp.permission_set.name #=> String
     #   resp.permission_set.permission_set_arn #=> String
-    #   resp.permission_set.description #=> String
-    #   resp.permission_set.created_date #=> Time
-    #   resp.permission_set.session_duration #=> String
     #   resp.permission_set.relay_state #=> String
+    #   resp.permission_set.session_duration #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/CreatePermissionSet AWS API Documentation
     #
@@ -690,11 +692,11 @@ module Aws::SSOAdmin
       req.send_request(options)
     end
 
-    # Deletes a principal's access from a specified AWS account using a
-    # specified permission set.
+    # Deletes a principal's access from a specified Amazon Web Services
+    # account using a specified permission set.
     #
     # <note markdown="1"> After a successful response, call
-    # `DescribeAccountAssignmentCreationStatus` to describe the status of an
+    # `DescribeAccountAssignmentDeletionStatus` to describe the status of an
     # assignment deletion request.
     #
     #  </note>
@@ -702,23 +704,13 @@ module Aws::SSOAdmin
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
-    #
-    # @option params [required, String] :target_id
-    #   TargetID is an AWS account identifier, typically a 10-12 digit string
-    #   (For example, 123456789012).
-    #
-    # @option params [required, String] :target_type
-    #   The entity type for which the assignment will be deleted.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [required, String] :permission_set_arn
     #   The ARN of the permission set that will be used to remove access.
     #
-    # @option params [required, String] :principal_type
-    #   The entity type for which the assignment will be deleted.
-    #
     # @option params [required, String] :principal_id
     #   An identifier for an object in IAM Identity Center, such as a user or
     #   group. PrincipalIds are GUIDs (For example,
@@ -727,6 +719,16 @@ module Aws::SSOAdmin
     #   Identity Store API
     #   Reference](/singlesignon/latest/IdentityStoreAPIReference/welcome.html).
     #
+    # @option params [required, String] :principal_type
+    #   The entity type for which the assignment will be deleted.
+    #
+    # @option params [required, String] :target_id
+    #   TargetID is an Amazon Web Services account identifier, (For example,
+    #   123456789012).
+    #
+    # @option params [required, String] :target_type
+    #   The entity type for which the assignment will be deleted.
+    #
     # @return [Types::DeleteAccountAssignmentResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::DeleteAccountAssignmentResponse#account_assignment_deletion_status #account_assignment_deletion_status} => Types::AccountAssignmentOperationStatus
@@ -735,24 +737,24 @@ module Aws::SSOAdmin
     #
     #   resp = client.delete_account_assignment({
     #     instance_arn: "InstanceArn", # required
-    #     target_id: "TargetId", # required
-    #     target_type: "AWS_ACCOUNT", # required, accepts AWS_ACCOUNT
     #     permission_set_arn: "PermissionSetArn", # required
-    #     principal_type: "USER", # required, accepts USER, GROUP
     #     principal_id: "PrincipalId", # required
+    #     principal_type: "USER", # required, accepts USER, GROUP
+    #     target_id: "TargetId", # required
+    #     target_type: "AWS_ACCOUNT", # required, accepts AWS_ACCOUNT
     #   })
     #
     # @example Response structure
     #
-    #   resp.account_assignment_deletion_status.status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
-    #   resp.account_assignment_deletion_status.request_id #=> String
+    #   resp.account_assignment_deletion_status.created_date #=> Time
     #   resp.account_assignment_deletion_status.failure_reason #=> String
-    #   resp.account_assignment_deletion_status.target_id #=> String
-    #   resp.account_assignment_deletion_status.target_type #=> String, one of "AWS_ACCOUNT"
     #   resp.account_assignment_deletion_status.permission_set_arn #=> String
-    #   resp.account_assignment_deletion_status.principal_type #=> String, one of "USER", "GROUP"
     #   resp.account_assignment_deletion_status.principal_id #=> String
-    #   resp.account_assignment_deletion_status.created_date #=> Time
+    #   resp.account_assignment_deletion_status.principal_type #=> String, one of "USER", "GROUP"
+    #   resp.account_assignment_deletion_status.request_id #=> String
+    #   resp.account_assignment_deletion_status.status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
+    #   resp.account_assignment_deletion_status.target_id #=> String
+    #   resp.account_assignment_deletion_status.target_type #=> String, one of "AWS_ACCOUNT"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DeleteAccountAssignment AWS API Documentation
     #
@@ -768,9 +770,9 @@ module Aws::SSOAdmin
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [required, String] :permission_set_arn
     #   The ARN of the permission set that will be used to remove access.
@@ -828,9 +830,9 @@ module Aws::SSOAdmin
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [required, String] :permission_set_arn
     #   The ARN of the permission set that should be deleted.
@@ -882,15 +884,15 @@ module Aws::SSOAdmin
 
     # Describes the status of the assignment creation request.
     #
+    # @option params [required, String] :account_assignment_creation_request_id
+    #   The identifier that is used to track the request operation progress.
+    #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
-    #
-    # @option params [required, String] :account_assignment_creation_request_id
-    #   The identifier that is used to track the request operation progress.
+    #   *Amazon Web Services General Reference*.
     #
     # @return [Types::DescribeAccountAssignmentCreationStatusResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -899,21 +901,21 @@ module Aws::SSOAdmin
     # @example Request syntax with placeholder values
     #
     #   resp = client.describe_account_assignment_creation_status({
-    #     instance_arn: "InstanceArn", # required
     #     account_assignment_creation_request_id: "UUId", # required
+    #     instance_arn: "InstanceArn", # required
     #   })
     #
     # @example Response structure
     #
-    #   resp.account_assignment_creation_status.status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
-    #   resp.account_assignment_creation_status.request_id #=> String
+    #   resp.account_assignment_creation_status.created_date #=> Time
     #   resp.account_assignment_creation_status.failure_reason #=> String
-    #   resp.account_assignment_creation_status.target_id #=> String
-    #   resp.account_assignment_creation_status.target_type #=> String, one of "AWS_ACCOUNT"
     #   resp.account_assignment_creation_status.permission_set_arn #=> String
-    #   resp.account_assignment_creation_status.principal_type #=> String, one of "USER", "GROUP"
     #   resp.account_assignment_creation_status.principal_id #=> String
-    #   resp.account_assignment_creation_status.created_date #=> Time
+    #   resp.account_assignment_creation_status.principal_type #=> String, one of "USER", "GROUP"
+    #   resp.account_assignment_creation_status.request_id #=> String
+    #   resp.account_assignment_creation_status.status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
+    #   resp.account_assignment_creation_status.target_id #=> String
+    #   resp.account_assignment_creation_status.target_type #=> String, one of "AWS_ACCOUNT"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribeAccountAssignmentCreationStatus AWS API Documentation
     #
@@ -926,15 +928,15 @@ module Aws::SSOAdmin
 
     # Describes the status of the assignment deletion request.
     #
+    # @option params [required, String] :account_assignment_deletion_request_id
+    #   The identifier that is used to track the request operation progress.
+    #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
-    #
-    # @option params [required, String] :account_assignment_deletion_request_id
-    #   The identifier that is used to track the request operation progress.
+    #   *Amazon Web Services General Reference*.
     #
     # @return [Types::DescribeAccountAssignmentDeletionStatusResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
@@ -943,21 +945,21 @@ module Aws::SSOAdmin
     # @example Request syntax with placeholder values
     #
     #   resp = client.describe_account_assignment_deletion_status({
-    #     instance_arn: "InstanceArn", # required
     #     account_assignment_deletion_request_id: "UUId", # required
+    #     instance_arn: "InstanceArn", # required
     #   })
     #
     # @example Response structure
     #
-    #   resp.account_assignment_deletion_status.status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
-    #   resp.account_assignment_deletion_status.request_id #=> String
+    #   resp.account_assignment_deletion_status.created_date #=> Time
     #   resp.account_assignment_deletion_status.failure_reason #=> String
-    #   resp.account_assignment_deletion_status.target_id #=> String
-    #   resp.account_assignment_deletion_status.target_type #=> String, one of "AWS_ACCOUNT"
     #   resp.account_assignment_deletion_status.permission_set_arn #=> String
-    #   resp.account_assignment_deletion_status.principal_type #=> String, one of "USER", "GROUP"
     #   resp.account_assignment_deletion_status.principal_id #=> String
-    #   resp.account_assignment_deletion_status.created_date #=> Time
+    #   resp.account_assignment_deletion_status.principal_type #=> String, one of "USER", "GROUP"
+    #   resp.account_assignment_deletion_status.request_id #=> String
+    #   resp.account_assignment_deletion_status.status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
+    #   resp.account_assignment_deletion_status.target_id #=> String
+    #   resp.account_assignment_deletion_status.target_type #=> String, one of "AWS_ACCOUNT"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribeAccountAssignmentDeletionStatus AWS API Documentation
     #
@@ -982,9 +984,9 @@ module Aws::SSOAdmin
     #
     # @return [Types::DescribeInstanceAccessControlAttributeConfigurationResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
+    #   * {Types::DescribeInstanceAccessControlAttributeConfigurationResponse#instance_access_control_attribute_configuration #instance_access_control_attribute_configuration} => Types::InstanceAccessControlAttributeConfiguration
     #   * {Types::DescribeInstanceAccessControlAttributeConfigurationResponse#status #status} => String
     #   * {Types::DescribeInstanceAccessControlAttributeConfigurationResponse#status_reason #status_reason} => String
-    #   * {Types::DescribeInstanceAccessControlAttributeConfigurationResponse#instance_access_control_attribute_configuration #instance_access_control_attribute_configuration} => Types::InstanceAccessControlAttributeConfiguration
     #
     # @example Request syntax with placeholder values
     #
@@ -994,12 +996,12 @@ module Aws::SSOAdmin
     #
     # @example Response structure
     #
-    #   resp.status #=> String, one of "ENABLED", "CREATION_IN_PROGRESS", "CREATION_FAILED"
-    #   resp.status_reason #=> String
     #   resp.instance_access_control_attribute_configuration.access_control_attributes #=> Array
     #   resp.instance_access_control_attribute_configuration.access_control_attributes[0].key #=> String
     #   resp.instance_access_control_attribute_configuration.access_control_attributes[0].value.source #=> Array
     #   resp.instance_access_control_attribute_configuration.access_control_attributes[0].value.source[0] #=> String
+    #   resp.status #=> String, one of "ENABLED", "CREATION_IN_PROGRESS", "CREATION_FAILED"
+    #   resp.status_reason #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribeInstanceAccessControlAttributeConfiguration AWS API Documentation
     #
@@ -1015,9 +1017,9 @@ module Aws::SSOAdmin
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [required, String] :permission_set_arn
     #   The ARN of the permission set.
@@ -1035,12 +1037,12 @@ module Aws::SSOAdmin
     #
     # @example Response structure
     #
+    #   resp.permission_set.created_date #=> Time
+    #   resp.permission_set.description #=> String
     #   resp.permission_set.name #=> String
     #   resp.permission_set.permission_set_arn #=> String
-    #   resp.permission_set.description #=> String
-    #   resp.permission_set.created_date #=> Time
-    #   resp.permission_set.session_duration #=> String
     #   resp.permission_set.relay_state #=> String
+    #   resp.permission_set.session_duration #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribePermissionSet AWS API Documentation
     #
@@ -1057,9 +1059,9 @@ module Aws::SSOAdmin
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [required, String] :provision_permission_set_request_id
     #   The identifier that is provided by the ProvisionPermissionSet call to
@@ -1078,12 +1080,12 @@ module Aws::SSOAdmin
     #
     # @example Response structure
     #
-    #   resp.permission_set_provisioning_status.status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
-    #   resp.permission_set_provisioning_status.request_id #=> String
     #   resp.permission_set_provisioning_status.account_id #=> String
-    #   resp.permission_set_provisioning_status.permission_set_arn #=> String
-    #   resp.permission_set_provisioning_status.failure_reason #=> String
     #   resp.permission_set_provisioning_status.created_date #=> Time
+    #   resp.permission_set_provisioning_status.failure_reason #=> String
+    #   resp.permission_set_provisioning_status.permission_set_arn #=> String
+    #   resp.permission_set_provisioning_status.request_id #=> String
+    #   resp.permission_set_provisioning_status.status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DescribePermissionSetProvisioningStatus AWS API Documentation
     #
@@ -1097,6 +1099,11 @@ module Aws::SSOAdmin
     # Detaches the specified customer managed policy from the specified
     # PermissionSet.
     #
+    # @option params [required, Types::CustomerManagedPolicyReference] :customer_managed_policy_reference
+    #   Specifies the name and path of a customer managed policy. You must
+    #   have an IAM policy that matches the name and path in each Amazon Web
+    #   Services account where you want to deploy your permission set.
+    #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed.
@@ -1104,22 +1111,17 @@ module Aws::SSOAdmin
     # @option params [required, String] :permission_set_arn
     #   The ARN of the `PermissionSet`.
     #
-    # @option params [required, Types::CustomerManagedPolicyReference] :customer_managed_policy_reference
-    #   Specifies the name and path of a customer managed policy. You must
-    #   have an IAM policy that matches the name and path in each AWS account
-    #   where you want to deploy your permission set.
-    #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.detach_customer_managed_policy_reference_from_permission_set({
-    #     instance_arn: "InstanceArn", # required
-    #     permission_set_arn: "PermissionSetArn", # required
     #     customer_managed_policy_reference: { # required
     #       name: "ManagedPolicyName", # required
     #       path: "ManagedPolicyPath",
     #     },
+    #     instance_arn: "InstanceArn", # required
+    #     permission_set_arn: "PermissionSetArn", # required
     #   })
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DetachCustomerManagedPolicyReferenceFromPermissionSet AWS API Documentation
@@ -1131,30 +1133,31 @@ module Aws::SSOAdmin
       req.send_request(options)
     end
 
-    # Detaches the attached AWS managed policy ARN from the specified
-    # permission set.
+    # Detaches the attached Amazon Web Services managed policy ARN from the
+    # specified permission set.
     #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
+    #
+    # @option params [required, String] :managed_policy_arn
+    #   The Amazon Web Services managed policy ARN to be detached from a
+    #   permission set.
     #
     # @option params [required, String] :permission_set_arn
     #   The ARN of the PermissionSet from which the policy should be detached.
     #
-    # @option params [required, String] :managed_policy_arn
-    #   The AWS managed policy ARN to be detached from a permission set.
-    #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.detach_managed_policy_from_permission_set({
     #     instance_arn: "InstanceArn", # required
-    #     permission_set_arn: "PermissionSetArn", # required
     #     managed_policy_arn: "ManagedPolicyArn", # required
+    #     permission_set_arn: "PermissionSetArn", # required
     #   })
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/DetachManagedPolicyFromPermissionSet AWS API Documentation
@@ -1171,9 +1174,9 @@ module Aws::SSOAdmin
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [required, String] :permission_set_arn
     #   The ARN of the permission set.
@@ -1237,15 +1240,18 @@ module Aws::SSOAdmin
       req.send_request(options)
     end
 
-    # Lists the status of the AWS account assignment creation requests for a
-    # specified IAM Identity Center instance.
+    # Lists the status of the Amazon Web Services account assignment
+    # creation requests for a specified IAM Identity Center instance.
+    #
+    # @option params [Types::OperationStatusFilter] :filter
+    #   Filters results based on the passed attribute value.
     #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [Integer] :max_results
     #   The maximum number of results to display for the assignment.
@@ -1254,9 +1260,6 @@ module Aws::SSOAdmin
     #   The pagination token for the list API. Initially the value is null.
     #   Use the output of previous API calls to make subsequent calls.
     #
-    # @option params [Types::OperationStatusFilter] :filter
-    #   Filters results based on the passed attribute value.
-    #
     # @return [Types::ListAccountAssignmentCreationStatusResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ListAccountAssignmentCreationStatusResponse#account_assignments_creation_status #account_assignments_creation_status} => Array&lt;Types::AccountAssignmentOperationStatusMetadata&gt;
@@ -1267,20 +1270,20 @@ module Aws::SSOAdmin
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_account_assignment_creation_status({
-    #     instance_arn: "InstanceArn", # required
-    #     max_results: 1,
-    #     next_token: "Token",
     #     filter: {
     #       status: "IN_PROGRESS", # accepts IN_PROGRESS, FAILED, SUCCEEDED
     #     },
+    #     instance_arn: "InstanceArn", # required
+    #     max_results: 1,
+    #     next_token: "Token",
     #   })
     #
     # @example Response structure
     #
     #   resp.account_assignments_creation_status #=> Array
-    #   resp.account_assignments_creation_status[0].status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
-    #   resp.account_assignments_creation_status[0].request_id #=> String
     #   resp.account_assignments_creation_status[0].created_date #=> Time
+    #   resp.account_assignments_creation_status[0].request_id #=> String
+    #   resp.account_assignments_creation_status[0].status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListAccountAssignmentCreationStatus AWS API Documentation
@@ -1292,15 +1295,18 @@ module Aws::SSOAdmin
       req.send_request(options)
     end
 
-    # Lists the status of the AWS account assignment deletion requests for a
-    # specified IAM Identity Center instance.
+    # Lists the status of the Amazon Web Services account assignment
+    # deletion requests for a specified IAM Identity Center instance.
+    #
+    # @option params [Types::OperationStatusFilter] :filter
+    #   Filters results based on the passed attribute value.
     #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [Integer] :max_results
     #   The maximum number of results to display for the assignment.
@@ -1309,9 +1315,6 @@ module Aws::SSOAdmin
     #   The pagination token for the list API. Initially the value is null.
     #   Use the output of previous API calls to make subsequent calls.
     #
-    # @option params [Types::OperationStatusFilter] :filter
-    #   Filters results based on the passed attribute value.
-    #
     # @return [Types::ListAccountAssignmentDeletionStatusResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ListAccountAssignmentDeletionStatusResponse#account_assignments_deletion_status #account_assignments_deletion_status} => Array&lt;Types::AccountAssignmentOperationStatusMetadata&gt;
@@ -1322,20 +1325,20 @@ module Aws::SSOAdmin
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_account_assignment_deletion_status({
-    #     instance_arn: "InstanceArn", # required
-    #     max_results: 1,
-    #     next_token: "Token",
     #     filter: {
     #       status: "IN_PROGRESS", # accepts IN_PROGRESS, FAILED, SUCCEEDED
     #     },
+    #     instance_arn: "InstanceArn", # required
+    #     max_results: 1,
+    #     next_token: "Token",
     #   })
     #
     # @example Response structure
     #
     #   resp.account_assignments_deletion_status #=> Array
-    #   resp.account_assignments_deletion_status[0].status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
-    #   resp.account_assignments_deletion_status[0].request_id #=> String
     #   resp.account_assignments_deletion_status[0].created_date #=> Time
+    #   resp.account_assignments_deletion_status[0].request_id #=> String
+    #   resp.account_assignments_deletion_status[0].status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListAccountAssignmentDeletionStatus AWS API Documentation
@@ -1347,21 +1350,19 @@ module Aws::SSOAdmin
       req.send_request(options)
     end
 
-    # Lists the assignee of the specified AWS account with the specified
-    # permission set.
+    # Lists the assignee of the specified Amazon Web Services account with
+    # the specified permission set.
+    #
+    # @option params [required, String] :account_id
+    #   The identifier of the Amazon Web Services account from which to list
+    #   the assignments.
     #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
-    #
-    # @option params [required, String] :account_id
-    #   The identifier of the AWS account from which to list the assignments.
-    #
-    # @option params [required, String] :permission_set_arn
-    #   The ARN of the permission set from which to list assignments.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [Integer] :max_results
     #   The maximum number of results to display for the assignment.
@@ -1370,6 +1371,9 @@ module Aws::SSOAdmin
     #   The pagination token for the list API. Initially the value is null.
     #   Use the output of previous API calls to make subsequent calls.
     #
+    # @option params [required, String] :permission_set_arn
+    #   The ARN of the permission set from which to list assignments.
+    #
     # @return [Types::ListAccountAssignmentsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ListAccountAssignmentsResponse#account_assignments #account_assignments} => Array&lt;Types::AccountAssignment&gt;
@@ -1380,11 +1384,11 @@ module Aws::SSOAdmin
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_account_assignments({
-    #     instance_arn: "InstanceArn", # required
     #     account_id: "TargetId", # required
-    #     permission_set_arn: "PermissionSetArn", # required
+    #     instance_arn: "InstanceArn", # required
     #     max_results: 1,
     #     next_token: "Token",
+    #     permission_set_arn: "PermissionSetArn", # required
     #   })
     #
     # @example Response structure
@@ -1392,8 +1396,8 @@ module Aws::SSOAdmin
     #   resp.account_assignments #=> Array
     #   resp.account_assignments[0].account_id #=> String
     #   resp.account_assignments[0].permission_set_arn #=> String
-    #   resp.account_assignments[0].principal_type #=> String, one of "USER", "GROUP"
     #   resp.account_assignments[0].principal_id #=> String
+    #   resp.account_assignments[0].principal_type #=> String, one of "USER", "GROUP"
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListAccountAssignments AWS API Documentation
@@ -1405,22 +1409,15 @@ module Aws::SSOAdmin
       req.send_request(options)
     end
 
-    # Lists all the AWS accounts where the specified permission set is
-    # provisioned.
+    # Lists all the Amazon Web Services accounts where the specified
+    # permission set is provisioned.
     #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
-    #
-    # @option params [required, String] :permission_set_arn
-    #   The ARN of the PermissionSet from which the associated AWS accounts
-    #   will be listed.
-    #
-    # @option params [String] :provisioning_status
-    #   The permission set provisioning status for an AWS account.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [Integer] :max_results
     #   The maximum number of results to display for the PermissionSet.
@@ -1429,6 +1426,14 @@ module Aws::SSOAdmin
     #   The pagination token for the list API. Initially the value is null.
     #   Use the output of previous API calls to make subsequent calls.
     #
+    # @option params [required, String] :permission_set_arn
+    #   The ARN of the PermissionSet from which the associated Amazon Web
+    #   Services accounts will be listed.
+    #
+    # @option params [String] :provisioning_status
+    #   The permission set provisioning status for an Amazon Web Services
+    #   account.
+    #
     # @return [Types::ListAccountsForProvisionedPermissionSetResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ListAccountsForProvisionedPermissionSetResponse#account_ids #account_ids} => Array&lt;String&gt;
@@ -1440,10 +1445,10 @@ module Aws::SSOAdmin
     #
     #   resp = client.list_accounts_for_provisioned_permission_set({
     #     instance_arn: "InstanceArn", # required
-    #     permission_set_arn: "PermissionSetArn", # required
-    #     provisioning_status: "LATEST_PERMISSION_SET_PROVISIONED", # accepts LATEST_PERMISSION_SET_PROVISIONED, LATEST_PERMISSION_SET_NOT_PROVISIONED
     #     max_results: 1,
     #     next_token: "Token",
+    #     permission_set_arn: "PermissionSetArn", # required
+    #     provisioning_status: "LATEST_PERMISSION_SET_PROVISIONED", # accepts LATEST_PERMISSION_SET_PROVISIONED, LATEST_PERMISSION_SET_NOT_PROVISIONED
     #   })
     #
     # @example Response structure
@@ -1468,9 +1473,6 @@ module Aws::SSOAdmin
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed.
     #
-    # @option params [required, String] :permission_set_arn
-    #   The ARN of the `PermissionSet`.
-    #
     # @option params [Integer] :max_results
     #   The maximum number of results to display for the list call.
     #
@@ -1478,6 +1480,9 @@ module Aws::SSOAdmin
     #   The pagination token for the list API. Initially the value is null.
     #   Use the output of previous API calls to make subsequent calls.
     #
+    # @option params [required, String] :permission_set_arn
+    #   The ARN of the `PermissionSet`.
+    #
     # @return [Types::ListCustomerManagedPolicyReferencesInPermissionSetResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ListCustomerManagedPolicyReferencesInPermissionSetResponse#customer_managed_policy_references #customer_managed_policy_references} => Array&lt;Types::CustomerManagedPolicyReference&gt;
@@ -1489,9 +1494,9 @@ module Aws::SSOAdmin
     #
     #   resp = client.list_customer_managed_policy_references_in_permission_set({
     #     instance_arn: "InstanceArn", # required
-    #     permission_set_arn: "PermissionSetArn", # required
     #     max_results: 1,
     #     next_token: "Token",
+    #     permission_set_arn: "PermissionSetArn", # required
     #   })
     #
     # @example Response structure
@@ -1536,8 +1541,8 @@ module Aws::SSOAdmin
     # @example Response structure
     #
     #   resp.instances #=> Array
-    #   resp.instances[0].instance_arn #=> String
     #   resp.instances[0].identity_store_id #=> String
+    #   resp.instances[0].instance_arn #=> String
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListInstances AWS API Documentation
@@ -1549,18 +1554,15 @@ module Aws::SSOAdmin
       req.send_request(options)
     end
 
-    # Lists the AWS managed policy that is attached to a specified
-    # permission set.
+    # Lists the Amazon Web Services managed policy that is attached to a
+    # specified permission set.
     #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
-    #
-    # @option params [required, String] :permission_set_arn
-    #   The ARN of the PermissionSet whose managed policies will be listed.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [Integer] :max_results
     #   The maximum number of results to display for the PermissionSet.
@@ -1569,6 +1571,9 @@ module Aws::SSOAdmin
     #   The pagination token for the list API. Initially the value is null.
     #   Use the output of previous API calls to make subsequent calls.
     #
+    # @option params [required, String] :permission_set_arn
+    #   The ARN of the PermissionSet whose managed policies will be listed.
+    #
     # @return [Types::ListManagedPoliciesInPermissionSetResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ListManagedPoliciesInPermissionSetResponse#attached_managed_policies #attached_managed_policies} => Array&lt;Types::AttachedManagedPolicy&gt;
@@ -1580,16 +1585,16 @@ module Aws::SSOAdmin
     #
     #   resp = client.list_managed_policies_in_permission_set({
     #     instance_arn: "InstanceArn", # required
-    #     permission_set_arn: "PermissionSetArn", # required
     #     max_results: 1,
     #     next_token: "Token",
+    #     permission_set_arn: "PermissionSetArn", # required
     #   })
     #
     # @example Response structure
     #
     #   resp.attached_managed_policies #=> Array
-    #   resp.attached_managed_policies[0].name #=> String
     #   resp.attached_managed_policies[0].arn #=> String
+    #   resp.attached_managed_policies[0].name #=> String
     #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListManagedPoliciesInPermissionSet AWS API Documentation
@@ -1604,12 +1609,15 @@ module Aws::SSOAdmin
     # Lists the status of the permission set provisioning requests for a
     # specified IAM Identity Center instance.
     #
+    # @option params [Types::OperationStatusFilter] :filter
+    #   Filters results based on the passed attribute value.
+    #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [Integer] :max_results
     #   The maximum number of results to display for the assignment.
@@ -1618,34 +1626,31 @@ module Aws::SSOAdmin
     #   The pagination token for the list API. Initially the value is null.
     #   Use the output of previous API calls to make subsequent calls.
     #
-    # @option params [Types::OperationStatusFilter] :filter
-    #   Filters results based on the passed attribute value.
-    #
     # @return [Types::ListPermissionSetProvisioningStatusResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
-    #   * {Types::ListPermissionSetProvisioningStatusResponse#permission_sets_provisioning_status #permission_sets_provisioning_status} => Array&lt;Types::PermissionSetProvisioningStatusMetadata&gt;
     #   * {Types::ListPermissionSetProvisioningStatusResponse#next_token #next_token} => String
+    #   * {Types::ListPermissionSetProvisioningStatusResponse#permission_sets_provisioning_status #permission_sets_provisioning_status} => Array&lt;Types::PermissionSetProvisioningStatusMetadata&gt;
     #
     # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_permission_set_provisioning_status({
-    #     instance_arn: "InstanceArn", # required
-    #     max_results: 1,
-    #     next_token: "Token",
     #     filter: {
     #       status: "IN_PROGRESS", # accepts IN_PROGRESS, FAILED, SUCCEEDED
     #     },
+    #     instance_arn: "InstanceArn", # required
+    #     max_results: 1,
+    #     next_token: "Token",
     #   })
     #
     # @example Response structure
     #
+    #   resp.next_token #=> String
     #   resp.permission_sets_provisioning_status #=> Array
-    #   resp.permission_sets_provisioning_status[0].status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
-    #   resp.permission_sets_provisioning_status[0].request_id #=> String
     #   resp.permission_sets_provisioning_status[0].created_date #=> Time
-    #   resp.next_token #=> String
+    #   resp.permission_sets_provisioning_status[0].request_id #=> String
+    #   resp.permission_sets_provisioning_status[0].status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListPermissionSetProvisioningStatus AWS API Documentation
     #
@@ -1661,21 +1666,21 @@ module Aws::SSOAdmin
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
+    #
+    # @option params [Integer] :max_results
+    #   The maximum number of results to display for the assignment.
     #
     # @option params [String] :next_token
     #   The pagination token for the list API. Initially the value is null.
     #   Use the output of previous API calls to make subsequent calls.
     #
-    # @option params [Integer] :max_results
-    #   The maximum number of results to display for the assignment.
-    #
     # @return [Types::ListPermissionSetsResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
-    #   * {Types::ListPermissionSetsResponse#permission_sets #permission_sets} => Array&lt;String&gt;
     #   * {Types::ListPermissionSetsResponse#next_token #next_token} => String
+    #   * {Types::ListPermissionSetsResponse#permission_sets #permission_sets} => Array&lt;String&gt;
     #
     # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
     #
@@ -1683,15 +1688,15 @@ module Aws::SSOAdmin
     #
     #   resp = client.list_permission_sets({
     #     instance_arn: "InstanceArn", # required
-    #     next_token: "Token",
     #     max_results: 1,
+    #     next_token: "Token",
     #   })
     #
     # @example Response structure
     #
+    #   resp.next_token #=> String
     #   resp.permission_sets #=> Array
     #   resp.permission_sets[0] #=> String
-    #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListPermissionSets AWS API Documentation
     #
@@ -1702,21 +1707,19 @@ module Aws::SSOAdmin
       req.send_request(options)
     end
 
-    # Lists all the permission sets that are provisioned to a specified AWS
-    # account.
+    # Lists all the permission sets that are provisioned to a specified
+    # Amazon Web Services account.
+    #
+    # @option params [required, String] :account_id
+    #   The identifier of the Amazon Web Services account from which to list
+    #   the assignments.
     #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
-    #
-    # @option params [required, String] :account_id
-    #   The identifier of the AWS account from which to list the assignments.
-    #
-    # @option params [String] :provisioning_status
-    #   The status object for the permission set provisioning operation.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [Integer] :max_results
     #   The maximum number of results to display for the assignment.
@@ -1725,6 +1728,9 @@ module Aws::SSOAdmin
     #   The pagination token for the list API. Initially the value is null.
     #   Use the output of previous API calls to make subsequent calls.
     #
+    # @option params [String] :provisioning_status
+    #   The status object for the permission set provisioning operation.
+    #
     # @return [Types::ListPermissionSetsProvisionedToAccountResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
     #   * {Types::ListPermissionSetsProvisionedToAccountResponse#next_token #next_token} => String
@@ -1735,11 +1741,11 @@ module Aws::SSOAdmin
     # @example Request syntax with placeholder values
     #
     #   resp = client.list_permission_sets_provisioned_to_account({
-    #     instance_arn: "InstanceArn", # required
     #     account_id: "AccountId", # required
-    #     provisioning_status: "LATEST_PERMISSION_SET_PROVISIONED", # accepts LATEST_PERMISSION_SET_PROVISIONED, LATEST_PERMISSION_SET_NOT_PROVISIONED
+    #     instance_arn: "InstanceArn", # required
     #     max_results: 1,
     #     next_token: "Token",
+    #     provisioning_status: "LATEST_PERMISSION_SET_PROVISIONED", # accepts LATEST_PERMISSION_SET_PROVISIONED, LATEST_PERMISSION_SET_NOT_PROVISIONED
     #   })
     #
     # @example Response structure
@@ -1762,21 +1768,21 @@ module Aws::SSOAdmin
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
-    #
-    # @option params [required, String] :resource_arn
-    #   The ARN of the resource with the tags to be listed.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [String] :next_token
     #   The pagination token for the list API. Initially the value is null.
     #   Use the output of previous API calls to make subsequent calls.
     #
+    # @option params [required, String] :resource_arn
+    #   The ARN of the resource with the tags to be listed.
+    #
     # @return [Types::ListTagsForResourceResponse] Returns a {Seahorse::Client::Response response} object which responds to the following methods:
     #
-    #   * {Types::ListTagsForResourceResponse#tags #tags} => Array&lt;Types::Tag&gt;
     #   * {Types::ListTagsForResourceResponse#next_token #next_token} => String
+    #   * {Types::ListTagsForResourceResponse#tags #tags} => Array&lt;Types::Tag&gt;
     #
     # The returned {Seahorse::Client::Response response} is a pageable response and is Enumerable. For details on usage see {Aws::PageableResponse PageableResponse}.
     #
@@ -1784,16 +1790,16 @@ module Aws::SSOAdmin
     #
     #   resp = client.list_tags_for_resource({
     #     instance_arn: "InstanceArn", # required
-    #     resource_arn: "TaggableResourceArn", # required
     #     next_token: "Token",
+    #     resource_arn: "TaggableResourceArn", # required
     #   })
     #
     # @example Response structure
     #
+    #   resp.next_token #=> String
     #   resp.tags #=> Array
     #   resp.tags[0].key #=> String
     #   resp.tags[0].value #=> String
-    #   resp.next_token #=> String
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ListTagsForResource AWS API Documentation
     #
@@ -1810,16 +1816,16 @@ module Aws::SSOAdmin
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [required, String] :permission_set_arn
     #   The ARN of the permission set.
     #
     # @option params [String] :target_id
-    #   TargetID is an AWS account identifier, typically a 10-12 digit string
-    #   (For example, 123456789012).
+    #   TargetID is an Amazon Web Services account identifier, (For example,
+    #   123456789012).
     #
     # @option params [required, String] :target_type
     #   The entity type for which the assignment will be created.
@@ -1839,12 +1845,12 @@ module Aws::SSOAdmin
     #
     # @example Response structure
     #
-    #   resp.permission_set_provisioning_status.status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
-    #   resp.permission_set_provisioning_status.request_id #=> String
     #   resp.permission_set_provisioning_status.account_id #=> String
-    #   resp.permission_set_provisioning_status.permission_set_arn #=> String
-    #   resp.permission_set_provisioning_status.failure_reason #=> String
     #   resp.permission_set_provisioning_status.created_date #=> Time
+    #   resp.permission_set_provisioning_status.failure_reason #=> String
+    #   resp.permission_set_provisioning_status.permission_set_arn #=> String
+    #   resp.permission_set_provisioning_status.request_id #=> String
+    #   resp.permission_set_provisioning_status.status #=> String, one of "IN_PROGRESS", "FAILED", "SUCCEEDED"
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/ProvisionPermissionSet AWS API Documentation
     #
@@ -1864,27 +1870,27 @@ module Aws::SSOAdmin
     #
     #  </note>
     #
+    # @option params [required, String] :inline_policy
+    #   The inline policy to attach to a PermissionSet.
+    #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [required, String] :permission_set_arn
     #   The ARN of the permission set.
     #
-    # @option params [required, String] :inline_policy
-    #   The inline policy to attach to a PermissionSet.
-    #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.put_inline_policy_to_permission_set({
+    #     inline_policy: "PermissionSetPolicyDocument", # required
     #     instance_arn: "InstanceArn", # required
     #     permission_set_arn: "PermissionSetArn", # required
-    #     inline_policy: "PermissionSetPolicyDocument", # required
     #   })
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/PutInlinePolicyToPermissionSet AWS API Documentation
@@ -1896,8 +1902,8 @@ module Aws::SSOAdmin
       req.send_request(options)
     end
 
-    # Attaches an AWS managed or customer managed policy to the specified
-    # PermissionSet as a permissions boundary.
+    # Attaches an Amazon Web Services managed or customer managed policy to
+    # the specified PermissionSet as a permissions boundary.
     #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
@@ -1939,9 +1945,9 @@ module Aws::SSOAdmin
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [required, String] :resource_arn
     #   The ARN of the resource with the tags to be listed.
@@ -1978,9 +1984,9 @@ module Aws::SSOAdmin
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [required, String] :resource_arn
     #   The ARN of the resource with the tags to be listed.
@@ -2019,19 +2025,18 @@ module Aws::SSOAdmin
     # Control](/singlesignon/latest/userguide/abac.html) in the *IAM
     # Identity Center User Guide*.
     #
+    # @option params [required, Types::InstanceAccessControlAttributeConfiguration] :instance_access_control_attribute_configuration
+    #   Updates the attributes for your ABAC configuration.
+    #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed.
     #
-    # @option params [required, Types::InstanceAccessControlAttributeConfiguration] :instance_access_control_attribute_configuration
-    #   Updates the attributes for your ABAC configuration.
-    #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.update_instance_access_control_attribute_configuration({
-    #     instance_arn: "InstanceArn", # required
     #     instance_access_control_attribute_configuration: { # required
     #       access_control_attributes: [ # required
     #         {
@@ -2042,6 +2047,7 @@ module Aws::SSOAdmin
     #         },
     #       ],
     #     },
+    #     instance_arn: "InstanceArn", # required
     #   })
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/UpdateInstanceAccessControlAttributeConfiguration AWS API Documentation
@@ -2055,37 +2061,37 @@ module Aws::SSOAdmin
 
     # Updates an existing permission set.
     #
+    # @option params [String] :description
+    #   The description of the PermissionSet.
+    #
     # @option params [required, String] :instance_arn
     #   The ARN of the IAM Identity Center instance under which the operation
     #   will be executed. For more information about ARNs, see [Amazon
-    #   Resource Names (ARNs) and AWS Service
+    #   Resource Names (ARNs) and Amazon Web Services Service
     #   Namespaces](/general/latest/gr/aws-arns-and-namespaces.html) in the
-    #   *AWS General Reference*.
+    #   *Amazon Web Services General Reference*.
     #
     # @option params [required, String] :permission_set_arn
     #   The ARN of the permission set.
     #
-    # @option params [String] :description
-    #   The description of the PermissionSet.
+    # @option params [String] :relay_state
+    #   Used to redirect users within the application during the federation
+    #   authentication process.
     #
     # @option params [String] :session_duration
     #   The length of time that the application user sessions are valid for in
     #   the ISO-8601 standard.
     #
-    # @option params [String] :relay_state
-    #   Used to redirect users within the application during the federation
-    #   authentication process.
-    #
     # @return [Struct] Returns an empty {Seahorse::Client::Response response}.
     #
     # @example Request syntax with placeholder values
     #
     #   resp = client.update_permission_set({
+    #     description: "PermissionSetDescription",
     #     instance_arn: "InstanceArn", # required
     #     permission_set_arn: "PermissionSetArn", # required
-    #     description: "PermissionSetDescription",
-    #     session_duration: "Duration",
     #     relay_state: "RelayState",
+    #     session_duration: "Duration",
     #   })
     #
     # @see http://docs.aws.amazon.com/goto/WebAPI/sso-admin-2020-07-20/UpdatePermissionSet AWS API Documentation
@@ -2110,7 +2116,7 @@ module Aws::SSOAdmin
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-ssoadmin'
-      context[:gem_version] = '1.28.0'
+      context[:gem_version] = '1.29.0'
       Seahorse::Client::Request.new(handlers, context)
     end