Validating the DynamoDB access controls using the AWS IAM policy simulator
It's always important to validate the security enforcement that we are going to impose on DynamoDB resources. In this recipe, we will see how to test the security features of DynamoDB.
Getting ready
To perform this recipe, you should have performed the earlier recipes.
How to do it…
Let's validate and test the security features of DynamoDB:
Go to the AWS IAM policy simulator. If you are already logged in to the AWS console on the browser, then you will be signed in to the simulator as well. You can refer to https://policysim.aws.amazon.com for more details.
Now, we want to test the access controls for the groups that we created in the earlier recipes. First, we will test the read-only group. For this, select the Groups tab from the drop-down menu, and click on dynamodb-read-only-group, which is to be tested, as shown in the following screenshot:
Next, select the Service button on which we want to test our controls, that...
