This repository has been archived by the owner on Sep 18, 2023. It is now read-only.
Add MozDef alerting to group role map builder #223
Comments
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Since we're already looking at all IAM policies that are used for federated login, we might as well make sure there aren't any dangerous conditions present for example
amrcheck thereby allowing every user that can authenticate with Auth0amrchecks allows all users (e.g. the policy has a StringNotEquals instead of a StringEquals on anamrvalue)etc
When we detect these risky situations we should alert to MozDef or something.
Original Jira ticket IAM-140
The text was updated successfully, but these errors were encountered: