Features
Integrations
Dashboards
Log Management
APM
Security Monitoring
Network Monitoring
Synthetic Monitoring
Real User Monitoring
Serverless
Alerts
API
< Back to rules search
AWS IAM User Disabled S3 Block Public Access
Classification:
compliance
Set up the guardduty integration.
Overview
Goal
Detect when an AWS IAM user disables S3 Block Public Access
Strategy
This rule lets you monitor this GuardDuty integration finding:
Triage & Response
- Determine which user triggered the signal. This can be found in the signal.
- Contact the user and determine why the user disabled the S3 Block Access feature.
- Re-enable S3 Block Public Access.
On this Page