Ensure that Amazon IAM policies created to grant access to the Conformity Bot on your behalf, provides all the permissions required to scan your AWS infrastructure in order to get the latest conformity rules, new features, and best practices. The Conformity Bot ingests meta-data from your AWS account and automates the task of ensuring that your cloud infrastructure remains reliable, scalable, efficient, and secure.
Trend Micro Cloud One™ – Conformity updates the IAM access policies used by the Conformity Bot as new conformity rules, features, and best practices are introduced. If the Conformity Bot does not have access to all the supported AWS cloud services and resources, it won't be able to highlight all the newest potential security risks, cost issues, performance or reliability inefficiencies.
Note: If required, you can allow individual AWS IAM actions to be excluded from the conformity rule check by adding them within the rule configuration settings, on the account console.
To determine if the IAM policies that grant access to the Conformity Bot provide all the necessary access permissions, perform the following actions:
Remediation / Resolution
To update the Amazon IAM policies created to grant access to the Conformity Bot in order to add any missing AWS actions, perform the following actions:
Unlock the Remediation Steps
Gain free unlimited access
to our full Knowledge Base
Over 750 rules & best practices
Get started for FREE
You are auditing:
Trend Micro Cloud One™ – Conformity Insufficient Access Permissions
Risk level: High