gene1wood
commented
1 year ago Deployed in infosec-prod
arn:aws:cloudformation:us-west-2:371522382791:stack/CloudFormationStackEmissionReaderRole/bfc06f10-389b-11ee-baa1-0a3e22f0bf0f
Closed gene1wood closed 1 year ago
gene1wood
commented
1 year ago Deployed in infosec-prod
arn:aws:cloudformation:us-west-2:371522382791:stack/CloudFormationStackEmissionReaderRole/bfc06f10-389b-11ee-baa1-0a3e22f0bf0f
This is a CloudFormation template that creates a new AWS IAM Role which grants the infosec-trusted AWS account permission to query the CloudFormation Stack Emission table. This will allow the infosec-trusted AWS account to discover the list of AWS IAM Role ARNs of the various other AWS accounts that trust the infosec-trusted AWS account via their security incident response IAM Roles.