forked from viva19/CloudCustodianRules
-
Notifications
You must be signed in to change notification settings - Fork 0
/
IAM-users-with-privilegedAccess.yml
36 lines (36 loc) · 1.21 KB
/
IAM-users-with-privilegedAccess.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
policies:
- name: IAM-Users-with-privilegedAccess
description: |
IAM Users with access to make privileged changes
resource: iam-user
filters:
- type: check-permissions
match: allowed
actions:
- iam:CreateUser
- iam:UpdateAssumeRolePolicy
- iam:PutRolePermissionsBoundary
- iam:DeletePolicy
- iam:AttachRolePolicy
- iam:PutRolePolicy
- iam:DeleteRolePermissionsBoundary
- iam:DetachRolePolicy
- iam:DeleteRolePolicy
- iam:DetachGroupPolicy
- iam:CreatePolicyVersion
- iam:DetachUserPolicy
- iam:PutGroupPolicy
- iam:DeleteAccountPasswordPolicy
- iam:PutUserPermissionsBoundary
- cloudtrail:UpdateTrail
- iam:AttachUserPolicy
- iam:DeleteUserPolicy
- iam:DeleteUserPermissionsBoundary
- iam:CreatePolicy
- iam:AttachGroupPolicy
- cloudtrail:DeleteTrail
- iam:PutUserPolicy
- cloudtrail:CreateTrail
- iam:DeleteGroupPolicy
- iam:DeletePolicyVersion
- iam:SetDefaultPolicyVersion