aws_compliance

AWS Compliance

IAM policies are the means by which privileges are granted to users, groups, or roles. It is recommended and considered a standard security advice to grant least privilege -that is, granting only the permissions required to perform a task. Determine what users need to do and then craft policies for them that let the users perform only those tasks, instead of allowing full administrative privileges.

iam_policy_all_attached_no_star_star

all_controls_iam

Ensure IAM policies that allow full "*:*" administrative privileges are not attached

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Powerpipe and Steampipe.

Control: Ensure IAM policies that allow full ":" administrative privileges are not attached

Description

Usage

SQL

Tags

Control: Ensure IAM policies that allow full "*:*" administrative privileges are not attached

Description

Usage

SQL

Tags

Control: Ensure IAM policies that allow full ":" administrative privileges are not attached