The Identity and Access Management (IAM) report provides insights into AWS account access management, focusing on security aspects such as identifying excessive administrators, unused credentials, and inactive principals. The report aids Managed Service Providers (MSPs) with structured and precise information to scrutinize and safeguard their security features by identifying and addressing potential vulnerabilities in AWS account access. The report structures the following information for various users to analyze data points:
- Administrators: Identifies administrators with prolonged access who are not actively using their permissions.
- Credentials: Highlights exposed access keys and recommends their removal if not needed.
- Unused Principals: Lists inactive users or roles (principals) that have not been used for a significant period.
- Tenant / Account Based Report Generation: The report is generated for specific tenants and AWS accounts, focusing on one account at a time.