Authentication

Ensure that no custom definitions are privileged

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

A user-defined, custom role has administrator-like privileges. This allows the user assuming the role to perform most, if not all, operations on any resource in the account. Overly permissive custom roles violate the principle of least privilege.
  • Recommended Mitigation

    Remove or update any custom roles that give administrator-like privileges.