Ensure only uppercase letters, lowercase letters and numbers are used in Sid element in AWS IAM Policy

LOW

Description

Unsupported Sid: Update the characters in the Sid element to use one of the following character types: [a-z, A-Z, 0-9].

Remediation

In AWS Console -

Sign in to the AWS console and go to the IAM console.
In the Navigation pane, select Policies.
In the list of policies, select the policy to edit.
Select the Permissions tab, and then choose Edit policy.
On the review page, review the changes and click Save.

In Terraform -

In the aws_iam_policy, aws_iam_role_policy, aws_iam_group_policy, and aws_iam_user_policy resources, edit the policy field so that the allowed Action list and/or Principal have appropriate values rather than a wildcard.
Update the Resource ARN list to use specific IDs with valid regions rather than a wildcard.
When using a SID for the policy, ensure it is in the appropriate format. The SID field can only accept letters and numbers.
For more information on how to effectively write an IAM policy see the AWS and Terraform documentation.

References:
https://docs.aws.amazon.com/IAM/latest/UserGuide/service_code_examples_iam.html
https://docs.aws.amazon.com/IAM/latest/UserGuide/reference_policies_elements_sid.html
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_policy

Policy Details

Rule Reference ID: AC_AWS_0472

CSP: AWS

Remediation Available: Yes

Domain: Identity and Access Management

Resource: aws_iam_policy

Resource Category: Identity and Access Management (IAM)

Resource Type: Policy

Frameworks

GDPR
HIPAA
ISO-27001
NIST-800-171
NIST-800-53
NIST-CSF