Managed Services, Security
Keeping your AWS environment secure is important, and monitoring Identity and Access Management (IAM) is a big part of that. At Revolgy, we’ve developed a solution to help our customers keep track of their access keys while completing the IAM rules that can be configured natively to force password rotation.
Best practices recommend changing passwords and access keys every 90 days. This prevents them from getting too old and potentially being compromised. While AWS tracks this information, it’s not easy to find it without digging through the console. That’s why we’ve come up with an easy solution that helps keep your passwords and access in check.
How Revolgy’s IAM monitoring tool works
We’ve built a solution that deploys fully to your AWS account. It’s event-driven and consists of multiple small apps (lambda functions), SQS queues, S3 buckets, and others. It gets deployed inside the given AWS account that needs to be monitored. Using the native features and functionalities of the AWS console, we can monitor your passwords and access keys and act against them when certain conditions are met.
When the system runs in reporting mode, this report is created and stored inside the AWS account, more specifically, in an S3 bucket.
Using a native feature, we configure rules to force the rotation of passwords within the AWS account.
By combining our solution with certain native features of AWS, we can monitor the access keys of the IAM users and, at the same time, act automatically under certain conditions. The tool generates a report stored in the solution’s S3 bucket with different information and sections. The solution can optionally send notifications once the report is created.
Our engineers ensure everything is set up and running smoothly, giving you confidence that your AWS environment is secure and compliant with best practices. This IAM monitoring feature is included for our existing customers with incident and operations management services, and new customers can add it as an extra layer of security.
Customizable alerts
When our solution finds an issue, you can decide how to handle it and respond best based on your security needs.
- Notify only: You get a notification, but no action is taken.
- Notify and block: The user is blocked, and you get a notification.
- Notify and deactivate: The access keys get automatically deactivated, and a notification gets sent to the selected contacts.
- Notify, block, and delete: The user is blocked, their account is deleted, and you’re notified.
- Notify, deactivate, and delete: The access keys get deactivated and deleted and a notification gets sent to the selected contacts.
Benefits and features of the IAM monitoring tool
The IAM monitoring tool for AWS is essential for maintaining robust security and operational efficiency in your cloud environment. This tool offers several key benefits and features:
- Automated reporting and notifications: Generates and stores detailed reports in an S3 bucket for easy access during audits. Configurable notifications provide immediate updates on report statuses.
- Proactive security measures: Mitigates risks by automatically inactivating or deleting outdated access keys, reducing the chances of unauthorized access.
- User awareness and communication: Enhances accountability by informing users about their access key statuses with timely alerts.
- Customization and flexibility: Allows for independent threshold configurations, enabling tailored monitoring rules to fit specific organizational policies and compliance needs.
Overall, the IAM monitoring solution for AWS is not just a security solution; it’s a comprehensive approach to managing access control, ensuring compliance, and maintaining operational excellence in the cloud. Its proactive and automated features significantly reduce manual oversight, allowing teams to focus on strategic initiatives while ensuring that their AWS environments remain secure and compliant.
