AWS > IAM >

IAM User Unauthorized to Edit

HIGH

Source

CloudSploit

iam-user-unauthorized-to-edit

management console

IAM User Unauthorized to Edit

Ensures AWS IAM users that are not authorized to edit IAM access policies are decommissioned.

Only authorized IAM users should have permission to edit IAM access policies to prevent any unauthorized requests.

Recommended Actions

Update unauthorized IAM users to remove permissions to edit IAM access policies.

Links

https://docs.aws.amazon.com/IAM/latest/UserGuide/access_controlling.html

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.