turbot/aws_compliance

Query: iam_user_no_inline_attached_policies

Usage

powerpipe query aws_compliance.query.iam_user_no_inline_attached_policies

Steampipe Tables

SQL

select
arn as resource,
case
when inline_policies is null and attached_policy_arns is null then 'ok'
else 'alarm'
end status,
name || ' has ' || coalesce(jsonb_array_length(inline_policies),0) || ' inline and ' ||
coalesce(jsonb_array_length(attached_policy_arns),0) || ' directly attached policies.' as reason
, account_id
from
aws_iam_user;

Controls

The query is being used by the following controls: