- 필수 기능
- 앱 내
- 서비스 관리
- 인프라스트럭처
- 애플리케이션 성능
- 디지털 경험
- 소프트웨어 제공
- 보안
- 로그 관리
- 관리
- 인프라스트럭처
- ci
- containers
- csm
- ndm
- otel_guides
- overview
- slos
- synthetics
- tests
- 워크플로
Confirm there are no Amazon IAM users (privileged users) with administrator permissions for your AWS account.
A privileged IAM user can access all AWS services and control resources through the AdministratorAccess IAM managed policy. Any user with administrator access that should not have access can potentially, whether unknowingly or purposefully, cause security issues or data leaks.
Follow the Removing a permissions policy from a user docs to revoke AdministratorAccess for a user.
Run list-users
to get a list of current IAM users.
aws iam list-users
Run the list-user-policies
command find the users attached policies.
aws iam list-user-policies --user-name Name
Run the detach-user-policy
command to revoke Administrator access.
aws iam detach-user-policy \
--user-name insert-username-here \
--policy-arn insert-policy-arn-here