profile avatar

Ivan Dwyer

@fortyfivan
San Francisco
CEO at IAM Pulse
Joined On Sep 10, 2021
2 Followers / 2 Following
1 Articles Published
27 Policies Published
1 Comments Posted

I work on IAM for the puns, not the glory. Avid collector of rare groove vinyl and dad jokes.

Published Articles

Published Policies

SCP: Prevent users from deleting Amazon VPC flow logs

This policy prevents principals from deleting EC2 flow logs or CloudWatch log groups or log streams.

Added on Aug 09, 2022 by Ivan Dwyer

SCP: Require a tag on specified created resources

This policy prevents principals from creating certain resource types if the request doesn't include the specified tags.

Added on Aug 09, 2022 by Ivan Dwyer

SCP: Prevent users from disabling Amazon GuardDuty

This policy prevents principals from disabling GuardDuty or altering its configuration

Added on Aug 09, 2022 by Ivan Dwyer

SCP: Require Amazon EC2 instances to use a specific type

This policy requires any EC2 instance spun up be of the specified type

Added on Aug 09, 2022 by Ivan Dwyer

SCP: Prevent users from disabling AWS Config

This policy prevents any principals from disabling or modifying AWS Config or any of its rules and triggers

Added on Aug 09, 2022 by Ivan Dwyer

SCP: Prevent users from disabling CloudWatch

This policy prevents any principals from disabling or modifying CloudWatch dashboards or alarms

Added on Aug 09, 2022 by Ivan Dwyer

SCP: Prevent member accounts from leaving the organization

This policy blocks use of the LeaveOrganization API operation so that administrators of member accounts can't remove their accounts from the organization.

Added on Aug 09, 2022 by Ivan Dwyer

SCP: Require MFA to perform an API action

This SCP requires MFA to be enabled for any principal requesting select API actions

Added on Aug 09, 2022 by Ivan Dwyer

SCP: Prevent changes to an IAM Role

This SCP prevents principals from making IAM changes to a specified IAM Role

Added on Aug 09, 2022 by Ivan Dwyer

SCP: Deny access to AWS based on the requested AWS Region

This SCP denies access to any operations outside of the specified Regions.

Added on Aug 09, 2022 by Ivan Dwyer

Join the beta waitlist

Enter your email to get notified when our product becomes available to try.

Sign Up for the community

Create your member profile to get involved with our content, programs, and events.