Benchmark: 8.1 Define and implement policies and procedures to ensure proper user identification management for non-consumer users and administrators
Description
By ensuring each user is uniquely identified— instead of using one ID for several employees—an organization can maintain individual responsibility for actions and an effective audit trail per employee. This will help speed issue resolution and containment when misuse or malicious intent occurs.
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-aws-complianceStart the Powerpipe server:
steampipe service startpowerpipe serverOpen http://localhost:9033 in your browser and select 8.1 Define and implement policies and procedures to ensure proper user identification management for non-consumer users and administrators.
Run this benchmark in your terminal:
powerpipe benchmark run aws_compliance.benchmark.pci_dss_v321_requirement_8_1Snapshot and share results via Turbot Pipes:
powerpipe benchmark run aws_compliance.benchmark.pci_dss_v321_requirement_8_1 --shareBenchmarks
- 8.1.2 Control addition, deletion, and modification of user IDs, credentials, and other identifier objects
- 8.1.4 Observe user accounts to verify that any inactive accounts over 90 days old are either removed or disabled
- 8.1.5 Manage IDs used by third parties to access, support, or maintain system components via remote access by enabling only during the time period needed and disabled when not in use