turbot/ibm_compliance

Control: 1.17 Ensure Inactive User Accounts are Suspend

Description

Revoke access privileges for users in an IBM Cloud account that are inactive, typically defined as user accounts with no logins in a given time frame.

Remediation

From Console

  1. Log in to IBM Cloud
  2. From the Menu bar, click Manage > Access (IAM).
  3. To view a list of users in the account, click Users.
  4. The user list will also show the status for each user in the account.
  5. To suspend a user, click on a user name.
  6. Under User details, select Suspended in the User status drop down.
  7. Click Apply.

Usage

Run the control in your terminal:

powerpipe control run ibm_compliance.control.cis_v100_1_17

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run ibm_compliance.control.cis_v100_1_17 --share

SQL

This control uses a named query:

manual_control

Tags