Understand that AWS has a variety of identity management tools and best practices. However, does AWS offer Privileged Identity/Access Management feature as well?
For example, by default, there is no admin user. If someone wants to assume the admin role, he/she has to submit requests to get necessary approvals from senior management. Then a temporary admin role is assigned to this user for a limited period of time to perform necessary tasks.
Yes you can create a custom IAM policy and assigned to that user. Example:
{
"Version": "2012-10-17",
"Statement": {
"Effect": "Allow",
"Action": "*",
"Resource": "*",
"Condition": {
"DateGreaterThan": {"aws:CurrentTime": "2020-04-01T00:00:00Z"},
"DateLessThan": {"aws:CurrentTime": "2020-06-30T23:59:59Z"}
}
}
}
Hope this helps you.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.