IAM misconfigurations

IAM Role Recently Used by an External Identity

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Orca has found that the role {AwsIamRole}, which can be assumed by an AWS identity which is not part of the account, was recently in use. Roles which can be assumed by an external entity should be monitored carefully to ensure they are not being misused.
  • Recommended Mitigation

    Ensure {AwsIamRole} is being used by authorized identities in an appropriate manner