cloudonaut

#27 Record AWS API calls to improve IAM Policies

Download it: MP3 | AAC | OGG | OPUS

Don't miss the our blog post Record AWS API calls to improve IAM Policies, the written version of this podcast episode.

Have you ever looked at an IAM policy and wondered: Is it really necessary to grant access to this specific action? Or do you need to know which API calls a legacy or 3rd party application is actually sending to come up with a secure IAM policy? CloudTrail can help here, but there is something better: Record API calls with the AWS SDKs and CLI (including the stuff that is not visible in CloudTrail).

In this episode, you learn to capture the data without touching source code. You also analyze the data and use the results to improve your IAM policies.

Feedback welcome!

We ask for feedback! Please rate or review our podcast on Apple Podcasts or wherever you listen to your favorite shows. Or send us a message via Twitter (Andreas and Michael) or LinkedIn (Andreas and Michael) or send us an email.


Comments


New comment

By submitting your comment you agree that the content of the field "Name or nickname" will be stored and shown publicly next to your comment. Using your real name is optional.

cloudonaut podcast

We are two brothers focusing 100% on Amazon Web Services (AWS). Every other week, one of us prepares the topic of the podcast. The topic is not known to the other one, which results in surprising conversations about all things AWS.

Typically, we are covering the following topics: DevOps, Serverless, Container, Security, Infrastructure as Code, Container, Continuous Deployment, S3, EC2, RDS, VPC, IAM, VPC, and many more.

by Andreas Wittig and Michael Wittig focusing on AWS

Subscribe

Follow us

Imprint - Privacy Policy