This rule ensures IAM policies do not contain statements granting admin access.
Rule | IAM policy should not have statements with admin access |
Framework | NIST Cybersecurity Framework (CSF) v1.1 |
Severity | ✔ High |
Rule Description
The purpose of this rule/policy is to ensure that IAM (Identity and Access Management) policies within an organization do not contain statements granting administrative access for the NIST (National Institute of Standards and Technology) Cybersecurity Framework (CSF) version 1. The NIST CSF provides a blueprint for managing and reducing cybersecurity risk.
Remediation Steps
Step 1: Review existing IAM policies
Step 2: Identify policies with admin access
Step 3: Modify policies to remove admin access
Step 4: Validate policy changes
Troubleshooting Steps
If troubleshooting is needed, follow these steps:
Step 1: Identify the issue
Step 2: Rollback changes if necessary
Step 3: Analyze error logs or policies
Step 4: Seek assistance from AWS support if needed
Necessary Code
No specific code examples are required for this rule. The remediation steps involve modifications within the AWS Management Console using its graphical UI.
Verification
To validate that the IAM policy no longer contains statements granting admin access for NIST CSF v1, follow these steps:
If the administrative actions are denied or restricted as expected, the policy has been successfully remediated.