All Content tagged with AWS Identity and Access Management
AWS Identity and Access Management (IAM) provides fine-grained access control across all of AWS. With IAM, you can specify who can access which services and resources, and under which conditions.
Content language: English
Select up to 5 tags to filter
Sort by most recent
I want to create a crawler on my RDS database but I cannot create the role needed as it it disabled. The AWS console user I am using has admin level role.
![Enter image description...
Hi all, I am trying to restrict a user's access to certain FMs on Amazon Bedrock by preventing them from granting a model access. I tried following this...
1) Can an Identity Center use their credentials to login and post on Re:Post
2) If so what are the least-privileged IAM policy privileges that must be applied to post?
I am having a hard time...
I need to create a Lambda function that validates whether each IAM user in an AWS account has MFA enabled. If a user does not have MFA, I need to trigger another Lambda function to handle that user...
We are working on an implementation that leverages multiple AWS services, including IAM, STS, Cost Explorer, and others, to retrieve and save service-based costs for various accounts using assumed IAM...
Hi AWS, I am planning to write an SCP for the following:
1. MFA should be enabled for all IAM users.
2. Hardware MFA should be enabled for the root user.
3. MFA should be enabled for the root...
Hi AWS, I am writing an SCP to enable **AWS Config** and **AWS GuardDuty**. The approved regions are `us-east-1`, `us-east-2`, `us-west-1`. Here is the SCP code:
```
{
"Version": "2012-10-17",
...
I'm trying to audit some AWS accounts to see if MFA is enforced for access keys. Every other time I've seen this done in other reviews for other companies, the MFA condition was enforced in a trust...
Hi AWS Community,
I'm reaching out for help with a frustrating issue I've been facing. Despite granting full access to CloudFormation stacks, I'm still encountering an AccessDenied error. This is...
I've been working with AWS for the past couple of months to set up a new Landingzone where we have set up SSO, so while working with this environment I use `aws sso login` to access that.
Meanwhile,...
Ok so I’ve followed the rabbit hole many different ways and haven’t found a solution. The problem is that I have root access, and an iam user. I have a login link to attach Q to VSC and once followed...
Trying to create an organization-level instance of Identity Center. When I try, the Identity Center console says I don’t have trusted access to my organization. It suggests I go to the Organization...