O'Reilly logo

Cloud Security Automation by Prashant Priyam

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Cross-account access

Here, we will take the example of an enterprise that has multiple accounts for different kinds of workloads, and where the administration needs to access all the environment to do management and maintenance activities. So, creating an IAM user per account is a very time-consuming process, and there will always be a chance of forgetting the credentials and access keys. To get rid of this situation, IAM enables you to have a cross-account access policy. Here, we create an account and create a policy that allows users to get access to services in other accounts. To do this, users just need to switch the account using the defined role and account ID.

Let's see an example of a cross-account access policy:

{ "Version": "2012-10-17", ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required