🚀Launch Week 04, May 13th - 17th, 2024!🚀
Powerpipe Hub 
Hub
Mods
turbot/aws_compliance
Overview
26Dashboards
1161Controls
568Queries
2Variables
GitHub
Loading controls...

Control: EC2 instance IAM role should not allow to alter critical s3 permissions configuration

Description

This control ensures that EC2 instance IAM role does not allow to alter critical s3 permissions configuration.

Usage

Run the control in your terminal:

powerpipe control run aws_compliance.control.ec2_instance_no_iam_role_with_alter_critical_s3_permissions_configuration

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run aws_compliance.control.ec2_instance_no_iam_role_with_alter_critical_s3_permissions_configuration --share

SQL

This control uses a named query:

ec2_instance_no_iam_role_with_alter_critical_s3_permissions_configuration

Tags

category = Compliance
plugin = aws
service = AWS/EC2