amitshcc / Notify-IAM-Updates Public

Notifications You must be signed in to change notification settings
Fork 0
Star 0

Code for AWS Lambda to notify updates in IAM Policies and Users.

GPL-3.0 license

0 stars 0 forks Branches Tags Activity

Notifications

Name		Name	Last commit message	Last commit date
Latest commit History 3 Commits
LICENSE		LICENSE
README.md		README.md
analyze.py		analyze.py
main.py		main.py
notify.py		notify.py

Repository files navigation

Checkout my profile and other projects at amit.cloud

Notify IAM Updates

This script notifies updates in IAM Policies and Users as per incoming events.

The script works with Cloudwatch rule to monitor Events related to IAM updates.

This setup works only in North Virginia Region (us-east-1).

Usage (In N. Virginia Region):

Create a Lambda function with all three scripts.
Configure lambda handler to point to main.lambda_handler()
Create a new Cloudwatch rule for IAM service and all event types.
For Trigger, add the lamdba create in first two steps.

Events Supported (For both Allowed and Denied events):

CreateUser
DeleteUser
AttachUserPolicy
DetachUserPolicy
CreatePolicy
DeletePolicy
CreatePolicyVersion

Other Details

Python Version = 3.7.2
Boto3 Version = 1.9.188

About

Code for AWS Lambda to notify updates in IAM Policies and Users.

GPL-3.0 license

Report repository

Releases

No releases published

Packages

No packages published

Languages

Python 100.0%