Back to All Checks
Low IAM

Ensure a support role has been created to manage incidents with AWS Support

CISISO 27001

Description

This check ensures that a support role exists for managing incidents with AWS Support.

Remediation

To create a support role for managing incidents with AWS Support, follow these steps:

Steps

  1. Log in to the AWS Management Console with an account that has administrative privileges.
  2. Navigate to the IAM dashboard and select 'Roles' from the navigation pane.
  3. Click on 'Create role' and select 'Another AWS account' for the type of trusted entity.
  4. Enter the AWS account ID of the support account provided by AWS Support.
  5. Attach the policies that grant the necessary permissions for incident management. AWS provides managed policies such as 'AWSSupportAccess' for this purpose.
  6. Review the role and its permissions, then provide a meaningful name and description for the role.
  7. Create the role and provide the role ARN to AWS Support for enabling access.

Compliance

CISISO 27001
Start Your Free Security Check