Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Implementation of Maker checker concept to user creation / assigning permissions

0

Hi,

How can I enforce the maker checker concept in user creation and assigning permissions to users / groups.

I.e. If an admin/root user assigning the services to the user, someone (other than the user who assign the service) should verify the request then only it got applied.

Topics
Management & GovernanceSecurity, Identity, & Compliance
Tags
AWS Identity and Access ManagementIAM PoliciesAWS Management ConsoleAWS Account ManagementSecurity, Identity, & Compliance
Language
English
asked a year ago123 views
1 Answer
0

Hi Vinoth,
There is a detailed blog post on how to achieve this with automation. Please see: How to automate the review and validation of permissions for users and groups in AWS IAM Identity Center.

In short, this blog post covers the following use cases:

  • How to maintain control over permissions and efficiently conduct thorough audits.
  • How to regularly review granted permissions to uphold the principle of least privilege.

Best regards,
Randy

AWS
answered a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content