.png)
Who can assume SuperAdmin role in AWS IAM?
jdowdy
✭✭✭✭✭
Is there a way to see who can assume roles in AWS IAM. For example - can User Joe assume Role SuperAdmin. Can we query that in J1?
0
Best Answer
-
Per the AWS Integration docs, you might be able to leverage the TRUSTS relationship that exists between the
aws_iam_roleand theaws_iam_user.
The following should get you what you're looking for:FIND User as u THAT TRUSTS aws_iam_role as r WHERE r.name="SuperAdmin"Or if you want to map it back to the Person maybe the following:FIND Person as p that is User as u THAT TRUSTS aws_iam_role as r WHERE r.name="SuperAdmin"You should be able to get whichever properties you need from whichever entity by leveraging the aliases (ex. r, u, p in the examples above).1
This Month's Leaders
Categories
- 336 All Categories
- Featured Categories
- 7 About the AskJ1 Community
- 11 Product Announcements
- From Mission Control
- 1 Rapid Response
- 3 How J1 Uses J1
- Topics
- 131 Asset Management
- 56 Compliance & Reporting
- 65 Security Operations
- 40 Security Engineering
- 5 Open Source
- 18 News, Careers and More