c0caDJ
Reputation: 43
How to create an AWS policy that restricts users from creating a security group that allows all inbound traffic?
I'm wondering how do I create a policy that restricts users from creating a security group that allows all inbound traffic? Currently in the policy creation, AWS is asking for which service specifically, but I haven't found a service that targets vpc security groups specifically.
Anyone have any suggestions that point me in the right direction?
Thanks
Upvotes: 1
Views: 171
Answers (1)
jarmod
Reputation: 78573
To continuously audit and limit security groups across AWS accounts in an organization, use AWS Firewall Manager.
You can read more at the blog post announcing these features.
Upvotes: 1
Related Questions
- How to deny all outbound traffic from an AWS EC2 Instance using a Security Group?
- Restrict wideopen security group rule access through IAM Policy
- Inbound rules for security groups
- Restrict AWS EC2 outbound traffic with a security group
- AWS Permissions to allow a specific user to Modify a specific Security Group
- AWS manage ec2 inbound/outboud rules by user
- Allow only AWS Specific HTTP and HTTPS request from security group
- AWS limiting policy permissions for EC2 create
- AWS: A default security group with no rules?
- How do I restrict AWS instances by user group in the AWS console?