Does it support both AWS CLI and Python Boto3?

Yes, the skill includes standardized implementation patterns for both the AWS Command Line Interface and the Boto3 SDK.

Can it help fix 'Access Denied' errors in the CLI?

Yes, it provides a structured debugging framework and specific CLI commands like simulate-principal-policy to identify exactly which permission is missing.

What types of IAM policies can it generate?

It can help generate identity-based policies, resource-based policies, permission boundaries, and service control policies (SCPs).

Can I use it to set up cross-account access?

Absolutely. It contains templates for trust policies and STS assume-role patterns required for secure cross-account communication.

How does this skill help with AWS security?

It enforces AWS best practices such as least privilege, MFA enforcement, and the use of temporary credentials over long-term access keys.

AWS Identity & Access Management (IAM)

Name: AWS Identity & Access Management (IAM)
Author: itsmostafa

byitsmostafa

•

963

•

클라우드 인프라

Manages AWS identities, roles, and permissions using secure best-practice patterns and automated CLI commands.

The AWS IAM skill equips Claude with the specialized knowledge required to architect and manage secure access control within AWS environments. It provides implementation patterns for creating least-privilege policies, configuring complex cross-account trust relationships, and setting up service roles for Lambda or EC2. By integrating this skill, Claude can assist in diagnosing 'Access Denied' errors, simulating principal policies, and ensuring cloud infrastructure adheres to AWS security benchmarks and organizational guardrails.

주요 기능

01963 GitHub stars

02Permission boundary and SCP implementation guidance

03Least-privilege JSON policy generation

04Cross-account role and trust relationship configuration

05Structured troubleshooting for Access Denied errors

06Automated CLI and Boto3 code snippet generation

사용 사례

01Setting up cross-account access between production and security-audit accounts

02Debugging complex IAM permission issues using policy simulation commands

03Configuring a secure service role for a Lambda function with specific resource access

주요 기능

01963 GitHub stars

02Permission boundary and SCP implementation guidance

03Least-privilege JSON policy generation

04Cross-account role and trust relationship configuration

05Structured troubleshooting for Access Denied errors

06Automated CLI and Boto3 code snippet generation

사용 사례

01Setting up cross-account access between production and security-audit accounts

02Debugging complex IAM permission issues using policy simulation commands

03Configuring a secure service role for a Lambda function with specific resource access