turbot/aws_compliance

Control: Ensure credentials unused for 45 days or greater are disabled

Description

AWS IAM users can access AWS resources using different types of credentials, such as passwords or access keys. It is recommended that all credentials that have been unused in 45 or greater days be deactivated or removed.

Usage

Run the control in your terminal:

powerpipe control run aws_compliance.control.iam_user_unused_credentials_45

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run aws_compliance.control.iam_user_unused_credentials_45 --share

SQL

This control uses a named query:

iam_user_unused_credentials_45

Tags