💼 1.16 Ensure IAM policies that allow full ":" administrative privileges are not attached

Contextual name: 💼 1.16 Ensure IAM policies that allow full ":" administrative privileges are not attached
ID: /frameworks/cis-aws-v1.3.0/01/16
Located in: 💼 1 Identity and Access Management

Description

IAM policies are the means by which privileges are granted to users, groups, or roles. It is recommended and considered a standard security advice to grant least privilege -that is, granting only the permissions required to perform a task. Determine what users need to do and then craft policies for them that let the users perform only those tasks, instead of allowing full administrative privileges.

Similar

Sections
- /frameworks/cis-aws-v1.4.0/01/16
- /frameworks/cis-aws-v1.2.0/01/22
Internal
- ID: dec-c-d01d309d

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 CIS AWS v1.2.0 → 💼 1.22 Ensure IAM policies that allow full ":" administrative privileges are not created		1	1
💼 CIS AWS v1.4.0 → 💼 1.16 Ensure IAM policies that allow full ":" administrative privileges are not attached			1

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 CIS AWS v1.2.0 → 💼 1.22 Ensure IAM policies that allow full ":" administrative privileges are not created		1	1
💼 CIS AWS v1.4.0 → 💼 1.16 Ensure IAM policies that allow full ":" administrative privileges are not attached			1

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags

Policies (1)

Policy	Logic Count	Flags
📝 AWS IAM Policy allows full administrative privileges 🟢	1	🟢 x6

Internal Rules

Rule	Policies	Flags
✉️ dec-x-157aa4b9	1

Description​

Similar​

Similar Sections (Take Policies From)​

Similar Sections (Give Policies To)​

Sub Sections​

Policies (1)​

Internal Rules​