AWS IAM role has administrative privileges and is inactive

이 페이지는 아직 한국어로 제공되지 않으며 번역 작업 중입니다. 번역에 관한 질문이나 의견이 있으시면 언제든지 저희에게 연락해 주십시오.

Description

If an IAM role is highly privileged or has administrative privileges and is inactive, this may indicate the role is not regularly used and may be removed.

Rationale

IAM roles should be scoped down to have the fewest privileges needed to perform their function. In the event a role has not been used for an extended period of time, this may indicate that the role is no longer needed and can be removed.

Remediation

Determine if the role is needed for a particular function and if not, remove it.

PREVIEWING: esther/docs-9518-update-example-control-sensitive-log-data