Permissions required for Misconfigurations Detection

Pre-defined Policies

Permissions

  arn:aws:iam::aws:policy/SecurityAudit
  arn:aws:iam::aws:policy/ReadOnlyAccess

Additional Permissions

Permissions

  account:GetAccountInformation
  s3:ListBucket
  lambda:GetFunction
  dynamodb:DescribeTableReplicaAutoScaling
  sns:GetSubscriptionAttributes
  cloudwatch:GetMetricStatistics
  cloudwatch:ListMetrics
  billing:Get*
  payments:List*
  budgets:Describe*
  budgets:View*
  ce:Get*
  ce:Describe*
  ce:List*
  cur:Describe*
  cur:GetUsage*
  pricing:*
  account:GetAccountInformation
  savingsplans:Describe*

Getting Started with AWS Audit API Gateway Audit

Pre-defined Policies
Additional Permissions

AWS Introduction

AWS Pricing

AWS Threats

AWS Misconfigurations

Permissions required for Misconfigurations Detection

Pre-defined Policies

Additional Permissions

AWS Introduction

AWS Pricing

AWS Threats

AWS Misconfigurations

​Pre-defined Policies

​Additional Permissions

Pre-defined Policies

Additional Permissions