Deny Changes to CloudWatch monitors Deny Changes to CloudWatch Logs Deny Changes to Config Deny accounts from leaving the organization Deny all actions Deny access to IAM with role exception Deny actions outside approved regions Deny ability to pass IAM roles Deny changes to GuardDuty Deny changes to AWS Budget Actions Limit changes to Cost Anomaly Detection, except when using a specific IAM Role
AWS Notes — Amazon Web Services Educational and Information Channel. Chat: https://t.me/aws_notes_chat. Contacts: @apple_rom, https://www.linkedin.com/in/roman-siewko/...