Plugin Title Pre-Authenticated Requests Access
Category Object Store
Description Ensure that Pre-Authenticated Requests have least privilege access.
More Info PreAuthenticated requests allow for users who are not in the tenancy to access buckets, ensuring least access prevents malicious entities from leveraging this type of access to edit or delete objects in a bucket.
AWS Link
Recommended Action When creating Pre-Authenticated Requests, ensure only ObjectRead permissions are selected.

Detailed Remediation Steps

Want to scan for this risk automatically?

Get Started Now