Control: AWS > Turbot > IAM > Policy > Managed
The control is responsible for maintaining the lifecycle of Turbot-managed IAM policies, this control ensures that policies are always up-to-date and removes them when they are no longer required. This continuous monitoring and management help in maintaining the security posture and compliance of IAM policies across the organization.
Resource Types
This control targets the following resource types:
Policies
This control type relies on these other policies when running actions:
- AWS > Turbot > IAM > Managed
- AWS > Turbot > Permissions > Policy > Name Prefix
- AWS > Turbot > Permissions > Policy > Name Path
- AWS > IAM > API Enabled
- AWS > Account > Permissions > Support Level
- AWS > Turbot > Permissions > Lockdown > Region Boundary
- AWS > Turbot > Permissions > Compiled > API Boundary
- AWS > Turbot > Permissions > Compiled > Service Permissions
- AWS > Turbot > Permissions > Compiled > Lockdown Statements
- AWS > Turbot > Permissions > Levels
- AWS > Turbot > Permissions > Compiled > Account Permissions
- AWS > Turbot > Permissions > Compiled > Levels > @turbot/aws-iam
- AWS > Turbot > Permissions > Compiled > Service Permissions > @turbot/aws-iam
- AWS > Turbot > Permissions > Compiled > Levels > @turbot/aws-iam
- AWS > Turbot > Permissions > Compiled > Service Permissions > @turbot/aws-iam
- AWS > Turbot > Permissions > Compiled > Levels > @turbot/aws-iam
- AWS > Turbot > Permissions > Compiled > Service Permissions > @turbot/aws-iam
Permissions
Cloud permissions used by this control and its actions:
iam:ListEntitiesForPolicy
iam:DetachRolePolicy
iam:DetachGroupPolicy
iam:DetachUserPolicy
iam:DeleteRolePermissionsBoundary
iam:DeleteUserPermissionsBoundary
iam:ListPolicyVersions
iam:DeletePolicyVersion
iam:DeletePolicy
Category
In Your Workspace
Developers
- tmod:@turbot/aws-iam#/control/types/iamTurbotPolicyManaged
- tmod:@turbot/turbot#/control/categories/iam
- turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-iam#/control/types/iamTurbotPolicyManaged"
Get Controls
Control Type URI
Category URI
GraphQL
CLI