IAM policies should adhere to least-privilege

iam
이 페이지는 아직 영어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

IAM policies define privileges granted to users, groups, or roles. Best practice recommends granting only the permissions necessary to perform specific tasks. Begin with minimal permissions, adding more as necessary, rather than starting with overly permissive settings. Granting full administrative privileges instead of essential permissions can expose resources to potential misuse or compromise. It’s critical to remove policies with "Effect": "Allow" combined with "Action": "*" and "Resource": "*" to minimize security risks.

Remediation

For guidance on removing overly permissive policies and properly configuring IAM policies, refer to Policies and permissions in AWS Identity and Access Management.

PREVIEWING: dgreen15/github-error-fix