💼 1.16 Ensure IAM policies that allow full ":" administrative privileges are not attached

ID: /frameworks/cis-aws-v1.3.0/01/16

Description

IAM policies are the means by which privileges are granted to users, groups, or roles. It is recommended and considered a standard security advice to grant least privilege -that is, granting only the permissions required to perform a task. Determine what users need to do and then craft policies for them that let the users perform only those tasks, instead of allowing full administrative privileges.

Similar

Sections
- /frameworks/cis-aws-v1.4.0/01/16
- /frameworks/cis-aws-v1.2.0/01/22
Internal
- ID: dec-c-d01d309d

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 CIS AWS v1.2.0 → 💼 1.22 Ensure IAM policies that allow full ":" administrative privileges are not created		1	1		no data
💼 CIS AWS v1.4.0 → 💼 1.16 Ensure IAM policies that allow full ":" administrative privileges are not attached			1		no data

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 CIS AWS v1.2.0 → 💼 1.22 Ensure IAM policies that allow full ":" administrative privileges are not created		1	1		no data
💼 CIS AWS v1.4.0 → 💼 1.16 Ensure IAM policies that allow full ":" administrative privileges are not attached			1		no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Policies (1)

Policy	Logic Count	Flags	Compliance
🛡️ AWS IAM Policy allows full administrative privileges🟢	1	🟢 x6	no data

Internal Rules

Rule	Policies	Flags
✉️ dec-x-157aa4b9	1

Description​

Similar​

Similar Sections (Take Policies From)​

Similar Sections (Give Policies To)​

Sub Sections​

Policies (1)​

Internal Rules​