AWS IAM Policy
AWS IAM Policy Fields
Guid
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
A unique identifier that is a combination of the GUID of the selected Scan and the AWS IAM Policy's unique ID.
FSName
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
A special unique identifier that is a combination of the PolicyName and the AWS Account ID.
Arn
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
Amazon Resource Name that uniquely identifies this IAM policy across all of AWS.
AccountId
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
The AWS account ID that this IAM policy belongs to. Empty for AWS managed policies.
Region
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
The AWS region associated with this policy.
OrganizationId
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
The AWS Organizations ID that this policy's account belongs to.
PolicyName
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
The friendly name that identifies the IAM policy.
Description
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
A description of the policy provided by the administrator.
Path
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
The path to the policy in the IAM hierarchy.
DefaultVersionId
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
The identifier for the version of the policy that is set as the default version.
PolicyType
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
The type of the policy. Can be Managed, Inline, or AWSManaged.
AttachmentCount
NUMBER
EQUAL, BETWEEN, SMALLER, LARGER, SMALLER_EQUAL, LARGER_EQUAL
The number of entities (users, groups, and roles) that the policy is attached to.
PermissionsBoundaryUsageCount
NUMBER
EQUAL, BETWEEN, SMALLER, LARGER, SMALLER_EQUAL, LARGER_EQUAL
The number of entities that use this policy as their permissions boundary.
IsAttachable
BOOLEAN
N/A
Indicates whether the policy can be attached to an IAM user, group, or role.
IsAwsManaged
BOOLEAN
N/A
Indicates whether this is an AWS managed policy (pre-created and managed by AWS) as opposed to a customer managed policy.
GrantsAdminPrivileges
BOOLEAN
N/A
Indicates whether the policy grants administrative privileges (e.g., contains *:* or equivalent wide permissions).
UsesWildcards
BOOLEAN
N/A
Indicates whether the policy document contains wildcard characters (* or ?) in actions or resources.
AWSTier
NUMBER
EQUAL, BETWEEN, SMALLER, LARGER, SMALLER_EQUAL, LARGER_EQUAL
Privilege tier of the policy based on the permissions it grants. Higher values indicate more sensitive permissions.
CreateDate
DATE
SMALLER, LARGER, BETWEEN, EQUAL
The date and time when the IAM policy was created.
UpdateDate
DATE
SMALLER, LARGER, BETWEEN, EQUAL
The date and time when the policy's default version was last updated.
ExposurePoint
NUMBER
EQUAL, BETWEEN, SMALLER, LARGER, SMALLER_EQUAL, LARGER_EQUAL
A numerical value indicating the level of exposure based on how many entities are affected by this policy.
risk
NUMBER
EQUAL, BETWEEN, SMALLER, LARGER, SMALLER_EQUAL, LARGER_EQUAL
The risk score of the policy calculated based on vulnerability counts and severities.
Last updated
Was this helpful?