IAM Privileges: How to check what privileges are being used

3 min read

When we are working with IAM roles, it's essential to make sure that the permissions we are granting exactly what we need: No more, no less.

The AWS SDK provides a way to check what privileges are being used by a role, group, or user. This can help us to fine-tune the permissions we are granting and remove any unnecessary privileges.

07/10/2024

AWS Console: Assuming roles

2 min read

If you are working with Amazon Web Services (AWS), you may have heard the term "assuming a role" in the context of one role using another role. This phrase refers to the process of temporarily taking on a specific set of permissions or privileges within an AWS account, in order to perform certain actions or access specific resources.

Since when we are using the AWS console we are using a specific role to have access, we can assume another role as well.

21/02/2023

Lambda functions: Allow lambda function to use VPC

2 min read

Lambda functions sometimes might need to interact with other AWS services that depending on how we are configuring it might need some explicit permissions to be set.

06/02/2023

Enforce resource tagging on AWS using an IAM policy

2 min read

It is good practice to tag all the resources on AWS to be able to better keep track of them: Using these tags we can have a better understanding of where we are spending our money into. So, we might want to enforce tagging to the resources: This is something we can achieve using an IAM policy

21/12/2021

Testing assume-role using AWS CLI

2 min read

Once you have configured that one role can assume another role from another account you might want to actually test that you are able to do it. With aws sts you will be able to assume a role

01/04/2021