aws_compliance

AWS Compliance

Ensure that CloudTrail trail S3 buckets should have MFA delete enabled. MFA delete helps prevent accidental bucket deletions by requiring the user who initiates the delete action to prove physical possession of an MFA device with an MFA code and adding an extra layer of friction and security to the delete action.

cloudtrail_trail_bucket_mfa_enabled

all_controls_cloudtrail

CloudTrail

CloudTrail trail S3 buckets MFA delete should be enabled

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Powerpipe and Steampipe.

Control: CloudTrail trail S3 buckets MFA delete should be enabled

Description

Usage

SQL

Tags