MANAGE IAM ROLE LOCATION RESTRICTIONS

Project Description

Create policies to restrict IAM role usage by restricting access from specified locations.

Summary:

Ensure all of your policies limit IAM role usage by restricting access from specified locations. Use IP, VPC or Tags to control the source location of your role use. Useful in preventing unauthorized credential use like SSRF attacks.

Supported Issue Types:

The IAM Role has been found without location restrictions

Supported Actions:

Restrict use of the role to specific CIDRs
Restrict use of the role to VPCs within this account
Restrict use of the role to all VPCs within the organization

Platform:

AWS Security Management with SecurityHub

By Jody Brazil|June 25th, 2020|Amazon, Cloud Automation, Cloud Management, Press Releases, Product Updates, Security|0 Comments

Easy Does It – Understanding Object Storage Public Data Exposure

By Rich Mogull|May 6th, 2020|Cloud Management, How To's, Security, Tips & Tricks, Top 10 Cloud Attack Killchains|0 Comments

Project Description

Summary:

Supported Issue Types:

Supported Actions:

Platform:

Related Articles

AWS Security Management with SecurityHub

Easy Does It – Understanding Object Storage Public Data Exposure

Project Details

Categories:

Tags:

MANAGE IAM ROLE LOCATION RESTRICTIONS

Project Description

Summary:

Supported Issue Types:

Supported Actions:

Platform:

Related Articles

AWS Security Management with SecurityHub

Easy Does It – Understanding Object Storage Public Data Exposure

Project Details

Categories:

Tags:

Share It With The World: Choose Your Platform!