Get Involved

Query: Ensure IAM policies that allow full ":" administrative privileges are not attached

Description

IAM policies are the means by which privileges are granted to users, groups, or roles. It is recommended and considered a standard security advice to grant least privilege -that is, granting only the permissions required to perform a task. Determine what users need to do and then craft policies for them that let the users perform only those tasks, instead of allowing full administrative privileges.

Query

Tables used in this query:

aws_iam_policy

Controls using this query:

1.16 Ensure IAM policies that allow full "*:*" administrative privileges are not attached
1.16 Ensure IAM policies that allow full "*:*" administrative privileges are not attached
1.16 Ensure IAM policies that allow full "*:*" administrative privileges are not attached
1.16 Ensure IAM policies that allow full "*:*" administrative privileges are not attached
1.16 Ensure IAM policies that allow full "*:*" administrative privileges are not attached
1.16 Ensure IAM policies that allow full "*:*" administrative privileges are not attached
1.22 Ensure IAM policies that allow full "*:*" administrative privileges are not created
Ensure IAM policies that allow full "*:*" administrative privileges are not attached

Query: Ensure IAM policies that allow full "*:*" administrative privileges are not attached

Description

Query

SQL

Query: Ensure IAM policies that allow full ":" administrative privileges are not attached