Groups

Groups

The Groups page provides a list of enumerated IAM groups in the entire AWS environment. The list contains the Member Count, Tier 0, Shadow, Risk Score, Exposure Point and Issue Counts.

Group Details

Details page contains the Risk Score of the group, Exposure Point, Information and Issues panes.

You can analyze objects in the Graph module by clicking the Visualize button on the upper left side of the Information Pane.

Information

Information Pane can contain different badges to highlight important attributes.

Badge

Description

Tier

Indicates that the object tier according to risk score and importance.

Shadow Admin

Indicates that the object can compromise admin objects with at least one attack path.

Information Pane contains Details, Users and Policies tabs.

Details

Details tab contains attributes below about the IAM group object.

Attribute

Description

Group Name

The name of the IAM group, used for identification within AWS.

Group ID

The unique identifier assigned to the IAM group by AWS.

ARN

The Amazon Resource Name that uniquely identifies the IAM group across AWS.

Account ID

The AWS account ID that the IAM group belongs to.

Path

The path associated with the IAM group, used for organizational grouping.

Member Count

The number of IAM users that are members of this group.

Created

The date and time when the IAM group was created.

Object ID

The unique identifier of the group object, equivalent to the IAM Group ID.

Users

Users tab contains a list of IAM users that are members of the group.

Policies

Policies tab contains a list of IAM policies attached to the group, including both managed and inline policies. This list also contains columns such as AWS Managed and Grants Admin Privileges to identify the scope and risk level of each policy.

Issues

Issues pane contains identified security issues on the IAM group object.

PreviousUsers NextRoles

Last updated 6 days ago

Was this helpful?