1 Answer
- Newest
- Most votes
- Most comments
0
Please see the Things to know about generating policies in the below doc :
https://docs.aws.amazon.com/IAM/latest/UserGuide/access-analyzer-policy-generation.html
Data events not available – IAM Access Analyzer does not identify action-level activity for data events, such as Amazon S3 data events, in generated policies.
While generating the policy, Please check the duration and region on which the IAM Access Analyzer should look into the cloudtrail.
answered 2 years ago
Relevant content
- asked 5 years ago
- asked 2 years ago
- AWS OFFICIALUpdated a month ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 9 months ago
Just to clarify: In the Cloud trail configuration, I did enable data events. If these are not logged, then what is this setting good for? Is there a distinction between "action-level data events" and "other data events"? And I solely operate in zone eu-central-1 and that is what I configured access analyzer to look after.