Auditing and Updating AWS IAM Policies in Aviatrix CoPilot

You can update your AWS IAM policies from the CoPilot Cloud Account page.

  1. Go to Cloud Resources > Cloud Account.

  2. Select the checkboxes for the AWS accounts you want to audit or the accounts with IAM policies you want to update.

    You can select multiple AWS accounts.

  3. Click the Actions menu and select Audit or Update IAM Policy.

    You can also run an Audit from the More 25 menu.

The Update IAM Policy option only applies to AWS accounts. If you select non-AWS cloud accounts when updating policies, the non-AWS accounts are skipped during the update process. Also, the current version of the IAM policy is saved by AWS. Up to 5 (latest) non-default policy versions are retained.

Auditing and Updating AWS IAM Policies in the Aviatrix Controller

To update your AWS IAM policies from your Aviatrix Controller, log in to the Controller.

  1. Select Accounts > Access Accounts from the lefthand menu.

  2. Select an AWS account and click Audit near to the top of the page. If this account needs an update, text under Account Audit at the top of the page reads "[Account Name] is not using the latest IAM policy."

  3. If the account is not using the latest IAM policy, click Update Policy. The latest IAM policy will be updated for this account.