Benchmark: SEC03 How do you manage permissions for people and machines?
Description
Manage permissions to control access to people and machine identities that require access to AWS and your workload. Permissions control who can access what, and under what conditions.
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-aws-well-architected
Start the Powerpipe server:
steampipe service startpowerpipe server
Open http://localhost:9033 in your browser and select SEC03 How do you manage permissions for people and machines?.
Run this benchmark in your terminal:
powerpipe benchmark run aws_well_architected.benchmark.well_architected_framework_sec03
Snapshot and share results via Turbot Pipes:
powerpipe benchmark run aws_well_architected.benchmark.well_architected_framework_sec03 --share
Benchmarks
- BP01 Define access requirements
- BP02 Grant least privilege access
- BP03 Establish emergency access process
- BP04 Reduce permissions continuously
- BP05 Define permission guardrails for your organization
- BP06 Manage access based on lifecycle
- BP07 Analyze public and cross-account access
- BP08 Share resources securely within your organization