Debugging IAM Policies can be hard. Your most helpful tool, CloudTrail, is not that helpful. AWS will tell you to use Amazon Athena. And then, you had two (at least) problems…
Hereby I present the AWS CloudTrail Summary Jupyter Notebook. This Jupyter Notebook helps you debug IAM Policies by generating a summary of CloudTrail events. The summary shows per IAM Role, which actions have been performed, the error (if any), and the last time such an event occurred.
Usage instructions can be found in the notebook itself and in the root of the project. Happy debugging!
Cloud Consultant with a passion for everything Cloud. Likes to automate all the things. Believes security is everyone's responsibility!
Share this article: Tweet this post / Post on LinkedIn