Does it support both AWS CLI and Python Boto3?

Yes, the skill includes standardized implementation patterns for both the AWS Command Line Interface and the Boto3 SDK.

Can it help fix 'Access Denied' errors in the CLI?

Yes, it provides a structured debugging framework and specific CLI commands like simulate-principal-policy to identify exactly which permission is missing.

What types of IAM policies can it generate?

It can help generate identity-based policies, resource-based policies, permission boundaries, and service control policies (SCPs).

Can I use it to set up cross-account access?

Absolutely. It contains templates for trust policies and STS assume-role patterns required for secure cross-account communication.

How does this skill help with AWS security?

It enforces AWS best practices such as least privilege, MFA enforcement, and the use of temporary credentials over long-term access keys.

AWS Identity & Access Management (IAM)

Name: AWS Identity & Access Management (IAM)
Author: itsmostafa

byitsmostafa

•

963

クラウドインフラストラクチャ

Manages AWS identities, roles, and permissions using secure best-practice patterns and automated CLI commands.

概要

The AWS IAM skill equips Claude with the specialized knowledge required to architect and manage secure access control within AWS environments. It provides implementation patterns for creating least-privilege policies, configuring complex cross-account trust relationships, and setting up service roles for Lambda or EC2. By integrating this skill, Claude can assist in diagnosing 'Access Denied' errors, simulating principal policies, and ensuring cloud infrastructure adheres to AWS security benchmarks and organizational guardrails.

主な機能

963 GitHub stars
Permission boundary and SCP implementation guidance
Least-privilege JSON policy generation
Cross-account role and trust relationship configuration
Structured troubleshooting for Access Denied errors
Automated CLI and Boto3 code snippet generation

ユースケース

Setting up cross-account access between production and security-audit accounts
Debugging complex IAM permission issues using policy simulation commands
Configuring a secure service role for a Lambda function with specific resource access

概要

主な機能

963 GitHub stars
Permission boundary and SCP implementation guidance
Least-privilege JSON policy generation
Cross-account role and trust relationship configuration
Structured troubleshooting for Access Denied errors
Automated CLI and Boto3 code snippet generation

ユースケース

Setting up cross-account access between production and security-audit accounts
Debugging complex IAM permission issues using policy simulation commands
Configuring a secure service role for a Lambda function with specific resource access