IAM users should not have both Console access and Access Keys

iam
이 페이지는 아직 영어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

AWS IAM users should be granted the minimum necessary access according to the principle of least privilege. Having both Console access and Access Keys simultaneously can increase the risk surface if either credential type is compromised. Best practices recommend restricting IAM users to only one method of access based on their job functions to minimize security vulnerabilities.

Remediation

See the Managing Access Keys for IAM Users and Enabling a Sign-in Console Password for IAM Users documentation for console remediation steps to remove either Console access or Access Keys.

PREVIEWING: aliciascott/DOCS-9725-Cloudcraft