Free Assessment

Amazon_S3_22

Ensure S3 Cross Account Access is not enabled

Description

Allowing untrusted cross-account access to your S3 buckets via bucket policies can produce to unauthorized actions like uploading, viewing, modifying or deleting S3 objects. To prevent S3 data exposure, unexpected charges on your AWS bill, data loss you need to grant access only to trusted entities by implementing the appropriate access policies.

Remediation

Perform the following steps to disable cross-account access:

  1. Sign in to the AWS Management Console.
  2. Navigate to S3 dashboard at https://console.aws.amazon.com/s3/.
  3. Select the S3 bucket that you want to configure.<ol style="list-style-type: lower-alpha

Service

S3

Severity

High

Compliance

Mapping

Want to Know More?

Learn how our partners are managing their cloud security and compliance with Cloudlytics.

I hereby accept the GDPR and Privacy Policy, by subscribing to the newsletters.

Cloudlytics

Solutions

Resources

Company

Legal

Facebook Twitter Linkedin Youtube
Start Free Trial
Login

CLOSE

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!

Learn More