John Jai
Reputation: 3723
Disable programmatic access to AWS
Can we disable programmatic access using access key / secret key to the entire account? In case there is a security breach and the access key and secret key is exposed to the outside world, can the AWS account administrator freeze the programmatic access to the AWS account?
Upvotes: 0
Views: 870
Answers (1)
John Hanley
Reputation: 81386
You can disable or delete an Access Key. You must disable access keys one at a time. There is no "global" disable or delete for access keys.
There are several types of Access Keys:
- AWS Root User Access Keys. You should not be using these keys. If you are, issue IAM User Access Keys and delete the root keys.
- IAM User Access Keys. These are the key types that you should use for normal access.
- Temporary Access Keys. These keys are generated by Roles or Simple Token Service (STS). These keys are temporary and expire.
Managing Access Keys for Your AWS Account Root User
Managing Access Keys for IAM Users
Revoking IAM Role Temporary Security Credentials
Upvotes: 3
Related Questions
- IAM policy to allow EC2 instance API access only to modify itself
- AWS Policy Restrict Permission Based On Service
- aws iam - prevent iam group or account from provisioning any services
- Hide EC2 Instances from other IAM users
- AWS IAM Policy to restrict Read Acces on EC2 instances
- AWS IAM: How to restrict PowerUser permissions
- Restrict EC2 permissions for an IAM user to use an AMI
- AWS IAM: How to prevent privilege elevation with IAM policies?
- How to allow users to launch EC2 instances only from Service Catalog?
- Hide services from management console