MANAGE IAM ROLE LOCATION RESTRICTIONS

Project Description

Create policies to restrict IAM role usage by restricting access from specified locations.

Summary:

Ensure all of your policies limit IAM role usage by restricting access from specified locations. Use IP, VPC or Tags to control the source location of your role use. Useful in preventing unauthorized credential use like SSRF attacks.

Supported Issue Types:

The IAM Role has been found without location restrictions

Supported Actions:

Restrict use of the role to specific CIDRs
Restrict use of the role to VPCs within this account
Restrict use of the role to all VPCs within the organization

Platform:

Unseen Exposure – Tackling the Pervasive Server Remote Access Issue

By Rich Mogull|April 2nd, 2020|Cloud Automation, Cloud Management, DevOps, DevSecOps, How To's, Operations, Security, Tips & Tricks, Top 10 Cloud Attack Killchains|0 Comments

COVID-19, the Cloud, and Cloud Security

By Jody Brazil|March 19th, 2020|Cloud Management, Economic, Operations, Security|0 Comments

Project Description

Summary:

Supported Issue Types:

Supported Actions:

Platform:

Related Articles

Unseen Exposure – Tackling the Pervasive Server Remote Access Issue

Project Details

Categories:

Tags:

MANAGE IAM ROLE LOCATION RESTRICTIONS

Project Description

Summary:

Supported Issue Types:

Supported Actions:

Platform:

Related Articles

Unseen Exposure – Tackling the Pervasive Server Remote Access Issue

COVID-19, the Cloud, and Cloud Security

Project Details

Categories:

Tags:

Share It With The World: Choose Your Platform!