How to Get Visibility into Cloud Entitlements?

After you login, select Cloud Security from the landing page. Next, click the App Launcher(on top of the page) and choose CIEM(Cloud Infrastructure Entitlement Management).

View the count of:

• IAM (Identity Access Management) Users who have not been active and pose a security risk. The unused or excessive permissions result in privilege escalation or account compromise issues.
• Groups having excessive permissions in the associated cloud service
• Policies attached to the identity(Users, User Groups, or Roles) that grant permissions more than what’s needed
• The number of inactive IAM (Identity Access Management) Roles in your AWS account that may increase over time, making them unused or obsolete
• Critical Activity Logs that determine which permissions were in use
• Consolidated list of available Users, Groups, and Roles from the All Findings

Click on the entities from the various sections and get a detailed summary on the:

• User and their associated AWS permissions. Key details include: User Information with Name, ID, ARN, Created date, Last accessed date, Inline policies, Managed policies, User groups, and high privilege policies
• Policy details with Name, Association link to the user, ARN, Services, Resources, and Effect(allow or deny access to users)

Examine the permissions mapped to an identity by looking into the details.