Skip to content
Matt Jones edited this page Oct 23, 2019 · 9 revisions

policy_sentry

policy_sentry is an IAM Least Privilege Policy Generator, auditor, and analysis database.

Please note that the wiki documentation is a work in progress.

Navigating the Wiki

Pre-requisite knowledge

  • IAM Policies. This covers (1) Elements of an IAM Policy and (2) Breakdown of the tables for Actions, Resources, and Condition keys per service
  • Minimization. This covers our method for reducing the size of IAM policies generated using our tool in an attempt to meet IAM Policy Character limit restrictions.

Getting Started as a User

Creating Policies with Terraform and policy_sentry

Getting Started as a Developer

  • Developer Guide. This covers generally how policy_sentry uses the Action Tables, ARN Tables, and Condition Keys tables to generate IAM Policies

Other

  • Limitations: Identifies some services that are currently missing

Author

Clone this wiki locally