πΌ [DMS.10] DMS endpoints for Neptune databases should have IAM authorization enabled
-
Contextual name: πΌ [DMS.10] DMS endpoints for Neptune databases should have IAM authorization enabled
-
ID:
/frameworks/aws-fsbp-v1.0.0/dms/10 -
Located in: πΌ Database Migration Service (DMS)
Descriptionβ
AWS Identity and Access Management (IAM) provides fine-grained access control
across AWS. With IAM, you can specify who can access which services and resources,
and under which conditions. With IAM policies, you manage permissions to your
workforce and systems to ensure least-privilege permissions. By enabling IAM
authorization on AWS DMS endpoints for Neptune databases, you can grant authorization
privileges to IAM users by using a service role specified by the ServiceAccessRoleARN parameter.
Similarβ
- AWS Security Hub
- Internal
- ID:
dec-c-3c03ff2f
- ID:
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST SP 800-53 Revision 5 β πΌ AC-2 Account Management | 13 | 20 | 34 | |
| πΌ NIST SP 800-53 Revision 5 β πΌ AC-3 Access Enforcement | 15 | 5 | 34 | |
| πΌ NIST SP 800-53 Revision 5 β πΌ AC-6 Least Privilege | 10 | 23 | 46 | |
| πΌ NIST SP 800-53 Revision 5 β πΌ AC-17 Remote Access | 10 | 13 | 19 | |
| πΌ NIST SP 800-53 Revision 5 β πΌ IA-2 Identification and Authentication (organizational Users) | 13 | 2 | ||
| πΌ NIST SP 800-53 Revision 5 β πΌ IA-5 Authenticator Management | 18 | 16 | ||
| πΌ PCI DSS v4.0.1 β πΌ 7.3.1 An access control system(s) is in place that restricts access based on a user's need to know and covers all system components. | 7 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|