IAM misconfigurations

Instance Profile with Administrative Privileges

Risk Level

Hazardous (3)

Compliance Frameworks


Orca has detected that the instance profile {AwsIamInstanceProfile} was granted full administrative privileges on the account. These privileges grant them the ability to perform all actions on any resource in the account.
  • Recommended Mitigation

    Prefer using more explicit policies that adhere to the principle of least privilege.