How do you access my AWS account? Is it safe?

CloudWizard connects via a secure, read-only cross-account IAM role that you deploy in your AWS account.

• The role trusts only the CloudWizard AWS account and can require a unique external ID.
• Permissions are limited to read-only actions such as Describe, List, and Get for security posture inspection.
• Access is performed using short-lived STS credentials rather than long-lived static keys.
• You stay in control and can revoke access at any time by removing the role from your AWS account.

For a more detailed explanation, see our Security Access Architecture.