June 15, 2022 at 11:58 am
Is there such a thing as locking an IAM user to a specific machine?
I have some on-prem machines that need to be able to run scripts that require AWS.
If I create programatic users, is there a way to lock them to the machine? Maybe via the IP?
Any hints or pointers are highly appreciated.
June 15, 2022 at 2:07 pm
You're going to want to look at Resourced Based Policies. You can lock down an IAM to a particular resource and it can be extremely granular. Then you combine that with other policies to further limit what a user can do.
----------------------------------------------------The credit belongs to the man who is actually in the arena, whose face is marred by dust and sweat and blood... Theodore RooseveltThe Scary DBAAuthor of: SQL Server 2017 Query Performance Tuning, 5th Edition and SQL Server Execution Plans, 3rd EditionProduct Evangelist for Red Gate Software
Viewing 2 posts - 1 through 1 (of 1 total)
You must be logged in to reply to this topic. Login to reply