Severity : MediumLow
Description: This control ensures that a custom managed policy is not created with full administrator access as AWS managed AdministratorAccess policy. AWS managed policies are designed to provide permissions for many common use cases. AWS managed policies make it easier to assign appropriate permissions to users, groups, and roles than Custom Managed policies. IAM AdministratorAccess job function policies provides full access and permissions delegation to every service and resource in AWS. Its recommend that this policy is used only for the account administrator. Instead of using the AWS managed policy, a custom policy created does the same thing, or allows escalation of the misconfiguration.
...