14 Working with Access Policies

After creating the users and groups who can access the services in your accounts, the next step in the process is to craft the policies that provide only the access necessary for each user, group, and role to perform their tasks. In the previous chapter, you reviewed how you could quickly provide access using a pre-crafted policy that AWS manages.

As an AWS security professional, it is most likely that one of your duties will be to write and tune the policies that grant and restrict access to the resources held in the account and AWS Organizations. You need to have a comprehensive understanding of how to provide both access and denial to services for the users, groups, and roles in your account.

You should also ...

Get AWS Certified Security – Specialty (SCS-C02) Exam Guide - Second Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

AWS Certified Security – Specialty (SCS-C02) Exam Guide - Second Edition by Adam Book, Stuart Scott

14

Working with Access Policies

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly