Best practices

AWS Support Access Policy Not In Use

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

AWS provides a support center that can be used for incident notification and response, as well as technical support and customer services. Create an IAM Role to allow authorized users to manage incidents with AWS Support.

  • Recommended Mitigation

    AWSSupportAccess policy is a global AWS resource. It has same ARN as arn:aws:iam::aws:policy/AWSSupportAccess for every account. Make sure to attach that policy to a designated user, in compliance with least privilege model for access control.

Need help?

Get a free Security Risk Assessment. Start today

See Orca in action See Orca in action-> View a 10 minute recorded demo or sign up for a personalized one-on-one walk-through.