Using AWS IAM action last accessed information | Amazon Web Services

Опубликовано 31 октября 2023, 23:15

AWS Identity and Access Management (IAM) provides action last accessed information for more than 140 services to help you refine the permissions of your IAM roles. You can review action last accessed information, identify unused permissions, and refine to scope down the access of your IAM roles to only the actions that they use for services such as Amazon CloudWatch, AWS Key Management Service (AWS KMS), and Elastic Load Balancing (ELB).
You can use action last accessed information as part of your periodic review process to restrict the access granted to IAM roles to just the required permissions. For example, you can view whether an IAM role performed an action of the CloudWatch service. Then, you can refine the IAM policy to grant only the permissions your IAM role requires to access and manage your workloads.

Learn more at: go.aws/49ex2UX


Subscribe:
More AWS videos: go.aws/3m5yEMW
More AWS events videos: go.aws/3ZHq4BK

Do you have technical AWS questions?
Ask the community of experts on AWS re:Post: go.aws/3lPaoPb

ABOUT AWS
Amazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform, offering over 200 fully featured services from data centers globally. Millions of customers — including the fastest-growing startups, largest enterprises, and leading government agencies — are using AWS to lower costs, become more agile, and innovate faster.

#AWSIdentityandAccessManagement #ActionLastAccessed #PeriodicReview#Process #UnusedPermissions #RefineScope #IdentityandAccessManagement #AWSSecurityServicesFeatureDemos #AWS #AmazonWebServices #CloudComputing