The principle of least privilege points to the concept that any user or service should only have the least amount of access and permissions required to do their job.
- [Instructor] When you start a new job, … you get some accounts to log in. … It could be for your not-so-new computer … with someone's coffee stains on the keys. … Or your corporate email account … that has 50 emails waiting for you already. … Or it could be your company shared network drive … on the server where your team … and your predecessors have been keeping documents … that everyone used to access. … Say you work in the sales department. … You should have access only to resources … and information that you require to do your job. … That could be the client list … for your team, or deck templates for slide shows … you will now be creating to present to potential clients. … Or even the products you are selling. … However, you would not expect … and should not have access to resources … like pending legal cases being handled … by the legal department, … the non-yet-released product mock-ups being developed … by your dev teams … or list of personnel shuffling … that the HR department is contemplating. …
Note: This course also maps to the Security module of the AWS Certified Cloud Practitioner exam. Taking all four courses in the Introduction to AWS for Non-Engineers series will help you prepare for the exam.