IAM misconfigurations

IAM policy allows administrative privileges

Risk Level

Hazardous (3)

Platform(s)
Compliance Frameworks

Description

Creating policies with ""Effect"": ""Allow"" and ""Action"": ""*"" over ""Resource"": ""*"" grants full administrative privileges. It was detected that IAM policy {AwsIamPolicy} grants administrative privileges. It is a best practice to start with a minimum set of permissions and grant additional permissions as required.
  • Recommended Mitigation

    It is recommended to detach the IAM policy from all users, roles or groups.