A naukri.com initiative
Amazon
1M
315
Image Credit: Amazon
Refine unused access using IAM Access Analyzer recommendations
- AWS Identity and Access Management (IAM) Access Analyzer offers prescriptive recommendations with actionable guidance that you can share with your developers to quickly refine unused access.
- IAM Access Analyzer continuously analyzes your accounts to identify unused access and consolidates findings in a centralized dashboard.
- To use IAM Access Analyzer recommendations to refine unused access, focus on the recommendations to refine unused permissions and filter unused permission findings.
- Analyze outdated resource policies and remove access permission that are no longer in use.
- Generate remediation policies based on least privilege principles and use the recommendations provided by IAM Access Analyzer.
- IAM Access Analyzer also provides policy recommendations with actionable steps that guide you to refine unused permissions.
- To generate recommendations for unused permissions, you can use the IAM console, AWS CLI, and AWS API.
- Review all recommended policies before applying them as they are based on the original policy and might not be optimal for your business needs.
- After updating the policies based on the recommended policy proposed, the finding status will change from active to resolved.
- IAM Access Analyzer saves considerable time by analyzing and identifying unused access and guiding you to refine it.
Read Full Article
19 Likes
For uninterrupted reading, download the app