Roles

Privileged

Indicates that the object is Privileged.

Tier

Indicates that the object tier according to risk score and importance.

Inactive

Indicates that the role has not been used for a defined period.

Service Linked

Indicates that the role is an AWS service-linked role managed by an AWS service.

Shadow Admin

Indicates that the object can compromise admin objects with at least one attack path.

Role Name

The name of the IAM role, used for identification within AWS.

Role ID

The unique identifier assigned to the IAM role by AWS.

ARN

The Amazon Resource Name that uniquely identifies the IAM role across AWS.

Account ID

The AWS account ID that the IAM role belongs to.

Description

A user-defined text field describing the role's purpose or intended use.

Path

The path associated with the IAM role, used for organizational grouping.

Created

The date and time when the IAM role was created.

Last Used

The most recent date and time the role was assumed; blank if never used.

Max Session Duration

The maximum duration in seconds for a session when assuming the role.

Permissions Boundary

The managed policy used to set the maximum permissions for the role; blank if not set.

Source Tenant

The name of the tenant or configuration source from which the role was scanned.

Object ID

The unique identifier of the role object, equivalent to the IAM Role ID.