Access Reports (for Governance and Compliance)

aws/security aws/compliance aws/governance

💡 Definition

Access reports (in the context of AWS governance and compliance) refer to consolidated summaries and detailed logs of who accessed what resources, when, and from where. These reports are crucial for auditing, maintaining security posture, and demonstrating adherence to regulatory requirements.

🔑 Key Concepts

⚙️ How it Works

AWS services like CloudTrail automatically record API calls and management events. These logs can be stored in an S3 bucket. Customers can then use various AWS tools (e.g., Athena for querying S3 logs, CloudWatch Logs Insights for analyzing CloudWatch Logs) or third-party solutions to generate custom reports on access patterns. The Credential Report from IAM provides a direct download of all user credential statuses.

🎯 Use Cases

💰 Pricing Model

📝 Exam Tips (CLF-C02)


See Also: * IAM * CloudTrail * AWS Config * Credential Report * AWS Audit Manager