IAM Policy recommendations

[050rotemlevi]

Motivation

Today, in a least privilege aspect we needs to ensure that resources (like EC2 instance, lambda function and ex...) have minimum permissions

Desired Behavior

i want a system that gives you the individual roles assigned to each resource, and what they perform. and if they have more permissions than the actions they are performing, then suggest to reduce the permission

in other words: create new policy for IAM User / Role based on CloudTrail last 90 days analyzer

Additional Context

https://aws.amazon.com/iam/features/analyze-access/