A company allows its developers to attach existing IAM policies to existing IAM roles to enable faster

Question 1

A company allows its developers to attach existing IAM policies to existing IAM roles to enable faster experimentation and agility. However, the security operations team is concerned that the developers could attach the existing administrator policy, which would allow the developers to circumvent any other security policies. How should a solutions architect address this issue?

Question 2

Set an IAM permissions boundary on the developer IAM role that explicitly denies attaching the administrator policy

Admin · Answer 1 · 2023-05-13T15:44:47+0000

Set an IAM permissions boundary on the developer IAM role that explicitly denies attaching the administrator policy

A company allows its developers to attach existing IAM policies to existing IAM roles to enable faster

Please log in or register to add a comment.

1 Answer

Please log in or register to add a comment.

Related questions