MANAGE IAM ROLE LOCATION RESTRICTIONS

Project Description

Create policies to restrict IAM role usage by restricting access from specified locations.

Summary:

Ensure all of your policies limit IAM role usage by restricting access from specified locations. Use IP, VPC or Tags to control the source location of your role use. Useful in preventing unauthorized credential use like SSRF attacks.

Supported Issue Types:

The IAM Role has been found without location restrictions

Supported Actions:

Restrict use of the role to specific CIDRs
Restrict use of the role to VPCs within this account
Restrict use of the role to all VPCs within the organization

Platform:

The 4 Biggest Barriers to Cloud Adoption

By Ty Murphy|October 30th, 2019|Cloud Automation, Cloud Management, DevOps, DevSecOps, Operations, Security, Tips & Tricks|0 Comments

SSRF Defense Step 3: Eliminate Excessive IAM Data Access Permissions

By Matt Dean|October 15th, 2019|Amazon, Cloud Automation, Cloud Management, How To's, Security, Tips & Tricks|0 Comments

Project Description

Summary:

Supported Issue Types:

Supported Actions:

Platform:

Related Articles

SSRF Defense Step 3: Eliminate Excessive IAM Data Access Permissions

Project Details

Categories:

Tags:

MANAGE IAM ROLE LOCATION RESTRICTIONS

Project Description

Summary:

Supported Issue Types:

Supported Actions:

Platform:

Related Articles

The 4 Biggest Barriers to Cloud Adoption

SSRF Defense Step 3: Eliminate Excessive IAM Data Access Permissions

Project Details

Categories:

Tags:

Share It With The World: Choose Your Platform!