SageMaker notebook instances should not grant users root access

This page is not yet available in Spanish. We are working on its translation.
If you have any questions or feedback about our current translation project, feel free to reach out to us!

Description

This control evaluates if root access is enabled for an Amazon SageMaker notebook instance.

Following the principle of least privilege, it’s a best practice to limit root access to instance resources, ensuring that permissions are not inadvertently over-provisioned.

Remediation

In order to restrict root access to SageMaker notebook instances, refer to the article Control root access to a SageMaker notebook instance.