πΌ Role-Based Access Control (RBAC) Management
- Contextual name: πΌ Role-Based Access Control (RBAC) Management
- ID:
/frameworks/cloudaware/identity-and-access-governance/rbac-management - Located in: πΌ Identity & Access Governance
Descriptionβ
Policies for identifying excessive or improperly configured access rights based on roles.
Similarβ
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (9)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS IAM Role unused π’ | 1 | π’ x6 |
| π AWS Support Role is not created π’ | 1 | π’ x6 |
| π Azure Subscription Custom Subscription Administrator Roles exist π’ | 1 | π’ x6 |
| π Azure Subscription Resource Lock Administrator Custom Role does not exist π’ | π’ x3 | |
| π Google IAM Roles related to KMS are not assigned to separate users π’ | 1 | π’ x6 |
| π Google IAM Service Account has admin privileges π’ | 1 | π’ x6 |
| π Google IAM Users are assigned the Service Account User or Service Account Token Creator roles at Project level ���π’ | 1 | π’ x6 |
| π Google User has both Service Account Admin and Service Account User roles assigned π’ | 1 | π’ x6 |
| π Microsoft Entra ID Global Administrator Role assigned to more than 4 users π’ | π’ x3 |