certificate_with_auto_renew_enablediam_access_group_with_public_accessiam_account_owner_no_api_keyiam_restrict_api_key_service_id_creationiam_support_center_access_group_configurediam_user_api_key_age_90iam_user_member_of_only_access_groupiam_user_mfa_enabled_alliam_user_with_valid_emailiam_user_with_valid_phoneinternet_service_ddos_protection_activeinternet_service_tls_higher_version_enabledinternet_service_waf_enabledmanual_controlobject_storage_bucket_with_cmkobject_storage_bucket_with_key_protect_enabledvpc_network_acl_restrict_ingress_rdp_allvpc_network_acl_restrict_ingress_ssh_allvpc_security_group_restrict_ingress_rdp_allvpc_security_group_restrict_ingress_ssh_all
Query: iam_access_group_with_public_access
Usage
powerpipe query ibm_compliance.query.iam_access_group_with_public_access
Steampipe Tables
SQL
with account_public_access as ( select name, id, account_id, count(*) as public_access_grp_no from ibm_iam_access_group where name = 'Public Access' group by name,id,account_id)select id as resource, case when name is null then 'ok' else 'alarm' end as status, case when name is null then 'No public access group configured in account.' else name || ' group configured in account.' end as reason, account_idfrom account_public_access;
Controls
The query is being used by the following controls: