2020 09 17

AWS – Amazon Detective introduces IAM Role Session Analysis

Amazon Detective now analyzes IAM role sessions so that you can visualize and understand the actions that users and apps have performed using assumed roles. With this new capability, Detective enables you to answer questions such as “which federated user invoked APIs that are associated with a security finding?”, “what API calls did a user invoke across a chain of role assumptions?”, “What API activity did an EC2 instance perform?” and “which of my users use this cross-account role?”, all without manually analyzing CloudTrail logs. By providing answers to these questions, Detective assists security analysts in diagnosing issues and understanding their root cause.

AWS – Amazon Detective introduces IAM Role Session Analysis

Related Posts

AWS – Amazon S3 now supports up to 1 million buckets per AWS account

AWS – Amazon QuickSight launches self serve Brand Customization

AWS – Amazon IVS introduces Multitrack Video to save input costs