New to DevOps, trying to find IAM references within codebase

%3CLINGO-SUB%20id%3D%22lingo-sub-3493204%22%20slang%3D%22en-US%22%3ENew%20to%20DevOps%2C%20trying%20to%20find%20IAM%20references%20within%20codebase%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-3493204%22%20slang%3D%22en-US%22%3E%3CP%3EHello%20all%2C%3C%2FP%3E%3CP%3Ei%20am%20new%20to%20DevOps%2C%20i%20have%20opened%20it%20before%2C%20but%20I%20have%20a%20new%20role%20and%20with%20it%20a%20bunch%20of%20security%20and%20other%20roles.%26nbsp%3B%26nbsp%3B%26nbsp%3B%20I%20work%20in%20an%20AWS%20based%20shop%2C%20and%20when%20cleaning%20up%20old%20IAM%20accounts%20for%20users%20who%20are%20no%20longer%20here%2C%20I%20ran%20into%20an%20issue.%3C%2FP%3E%3CP%3EEven%20though%20a%20user%20has%20long%20since%20been%20disabled%20then%20deleted%20in%20Active%20Directory%2C%20so%20most%20other%20ties%20are%20long%20gone%2C%20there%20are%20connections%20to%20Azure%20Devops%20from%20AWS%20IAM.%3C%2FP%3E%3CP%3EI%20was%20told%20this%20was%20a%20simple%20search%2C%20but%20struck%20out%2C%20as%20did%20google%20(admittedly%20my%20google-fu%20leaves%20a%20bit%20to%20be%20desired)%20and%202%20of%20the%20devs%20i%20work%20with%2C%20when%20trying%20to%20search%20the%20code%20base%20for%20references%20to%20either%20the%20FULL%20length%20arn%3Aaws%3Aiam%3A%3A(companyacctnumber)%3Auser%2Fusername%20or%20just%20username%2C%20so%20we%20can%20find%20what%20apps%20are%20still%20tied%20to%20certain%20users%2C%20as%20I%20disabled%20a%20IAM%20for%20a%20user%20who%20had%20been%20gone%20for%20over%20a%20year%20and%20blew%20up%20a%20piece%20of%20software%20running%20in%20Azure.%3C%2FP%3E%3CP%3EIf%20you%20have%20an%20answer%20please%20be%20specific%20in%20steps%20as%20this%20is%20NOT%20a%20tool%20i%20have%20done%20more%20than%20open%20and%20look%20at%20a%20couple%20times%20as%20I%20am%20NOT%20a%20developer.%3C%2FP%3E%3CP%3EThanks%20in%20advance%3C%2FP%3E%3C%2FLINGO-BODY%3E
New Contributor

Hello all,

i am new to DevOps, i have opened it before, but I have a new role and with it a bunch of security and other roles.    I work in an AWS based shop, and when cleaning up old IAM accounts for users who are no longer here, I ran into an issue.

Even though a user has long since been disabled then deleted in Active Directory, so most other ties are long gone, there are connections to Azure Devops from AWS IAM.

I was told this was a simple search, but struck out, as did google (admittedly my google-fu leaves a bit to be desired) and 2 of the devs i work with, when trying to search the code base for references to either the FULL length arn:aws:iam::(companyacctnumber):user/username or just username, so we can find what apps are still tied to certain users, as I disabled a IAM for a user who had been gone for over a year and blew up a piece of software running in Azure.

If you have an answer please be specific in steps as this is NOT a tool i have done more than open and look at a couple times as I am NOT a developer.

Thanks in advance

0 Replies