AWS_IAM_25

Ensure inline IAM policies are not attached to IAM users

Description

Inline policies are policies that are embedded directly into a single user, group, or role.It is recommend to use managed policies instead of inline policies. Managed policies provide reusability, central change management, versioning and more capabilities.

Remediation

Performthe following to remove the inline policies and replace them with managed policies.

  1. To Remove inline policy
    1. Sign in to the AWS Management Console and open the IAM console at https://console.aws.amazon.com/iam/.
    2. In the navigation pane, choose Policies.
    3. Choose the name of the customer managed policy that has a version you want to delete. You can use the Filter menu and the search box to filter the list of policies.
    4. &nbsp

Service

IAM

Severity

High

Compliance

Mapping

We are now live on AWS Marketplace.
The integrated view of your cloud infrastructure is now easier than ever!