AWS Systems Manager Parameter Store Policies
GPTKB entity
Statements (48)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
AWS Service Feature
|
| gptkbp:allows |
ListTagsForResource
AddTagsToResource DeleteParameter DescribeParameters GetParameter GetParameterHistory GetParameters GetParametersByPath LabelParameterVersion PutParameter RemoveTagsFromResource |
| gptkbp:attachedTo |
gptkb:IAM_groups
gptkb:IAM_users IAM roles SSM parameters |
| gptkbp:controlledBy |
SSM Parameters
|
| gptkbp:documentation |
https://docs.aws.amazon.com/systems-manager/latest/userguide/sysman-paramstore-access.html
|
| gptkbp:enables |
Audit logging
Granular access Parameter version control |
| gptkbp:enforcedBy |
Least privilege principle
|
| https://www.w3.org/2000/01/rdf-schema#label |
AWS Systems Manager Parameter Store Policies
|
| gptkbp:partOf |
gptkb:AWS_Systems_Manager
|
| gptkbp:relatedTo |
gptkb:AWS_CloudTrail
gptkb:AWS_KMS gptkb:AWS_Identity_and_Access_Management |
| gptkbp:supports |
IAM policies
Policy versioning Cross-account access Resource-based policies Condition keys Encryption policies Policy evaluation logic Policy inheritance Policy logging Policy monitoring Policy overrides Policy simulation Policy troubleshooting Policy validation Resource-level permissions Tag-based access control |
| gptkbp:usedFor |
Access control
Security management Parameter permissions |
| gptkbp:bfsParent |
gptkb:AWS_EventBridge
|
| gptkbp:bfsLayer |
6
|