Skip to main content

πŸ’Ό 1.16 Ensure IAM policies are attached only to groups or roles

  • Contextual name: πŸ’Ό 1.16 Ensure IAM policies are attached only to groups or roles
  • ID: /frameworks/cis-aws-v1.2.0/01/16
  • Located in: πŸ’Ό 1 Identity and Access Management

Description​

By default, IAM users, groups, and roles have no access to AWS resources. IAM policies are the means by which privileges are granted to users, groups, or roles. It is recommended that IAM policies be applied directly to groups and roles but not users.

Similar​

  • Sections
    • /frameworks/cis-aws-v1.3.0/01/15
  • Internal
    • ID: dec-c-349d9315

Similar Sections (Take Policies From)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό CIS AWS v1.3.0 β†’ πŸ’Ό 1.15 Ensure IAM Users Receive Permissions Only Through Groups11

Similar Sections (Give Policies To)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό CIS AWS v1.3.0 β†’ πŸ’Ό 1.15 Ensure IAM Users Receive Permissions Only Through Groups11

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags

Policies (1)​

PolicyLogic CountFlags
πŸ“ AWS IAM User has inline or directly attached policies 🟒1🟠 x1, 🟒 x5

Internal Rules​

RulePoliciesFlags
βœ‰οΈ dec-x-4157c58a1