AWS-QuickSetup-StackSet-Local-ExecutionRole
Overview
Critical
0High
1Medium
0Low
1Informational
0Security issues (2)
Severity | Non-Compliance | Issue | Remediation | Read more | Action |
---|---|---|---|---|---|
High | — | IAM role "AWS-QuickSetup-StackSet-Local-ExecutionRole" must require either MFA or an external ID to designate who can assume the role. The role's misconfigured account is: "arn:aws:iam::531239714189:role/AWS-QuickSetup-StackSet-Local-AdministrationRole". | Update the IAM role, making sure it uses either MFA or an external ID to designate who can assume the role. | More info | |
Low | — | IAM role "AWS-QuickSetup-StackSet-Local-ExecutionRole" contains managed AdministratorAccess policy. | Consider tightening the IAM role policies by granting them least privilege and avoid the wildcards, if possible. | More info |