Policy Integrity Verification Guide
This guide provides comprehensive instructions for verifying that Chronom's scanner roles and policies maintain their intended configuration across AWS and Azure environments.
Overview
Policy integrity verification using checksums provides several critical security benefits:
- Configuration Assurance: Verify roles haven't been modified from their intended state
- Security Validation: Ensure permissions remain within expected boundaries
- Compliance Support: Provide auditable proof of proper configuration
- Troubleshooting Aid: Identify configuration drift as a potential cause of scanning issues
AWS Policy Verification
Current AWS Checksums
| Component | SHA256 Checksum |
|---|---|
| ChronomReadonlyAdditionalAccessPolicy (Complete) | 426c2c783ac6545ec0e7fb77de21337184ee3f7891b297b4dfa6765c6658bad1 |
Related Documentation
- AWS: Add Account - Initial AWS setup
- AWS: Policy Checksums Reference - Quick AWS reference
Security Note: Keep verification scripts and checksums updated when Chronom releases policy updates. Subscribe to Chronom release notes for notification of permission changes.