certificate_with_auto_renew_enablediam_access_group_with_public_accessiam_account_owner_no_api_keyiam_restrict_api_key_service_id_creationiam_support_center_access_group_configurediam_user_api_key_age_90iam_user_member_of_only_access_groupiam_user_mfa_enabled_alliam_user_with_valid_emailiam_user_with_valid_phoneinternet_service_ddos_protection_activeinternet_service_tls_higher_version_enabledinternet_service_waf_enabledmanual_controlobject_storage_bucket_with_cmkobject_storage_bucket_with_key_protect_enabledvpc_network_acl_restrict_ingress_rdp_allvpc_network_acl_restrict_ingress_ssh_allvpc_security_group_restrict_ingress_rdp_allvpc_security_group_restrict_ingress_ssh_all
Query: iam_user_mfa_enabled_all
Usage
powerpipe query ibm_compliance.query.iam_user_mfa_enabled_allSteampipe Tables
SQL
select account_id as resource, case when mfa = 'NONE' then 'alarm' else 'ok' end as status, case when mfa = 'NONE' then 'MFA not enabled for all users in account.' else 'MFA enabled for all users in account.' end as reason, account_idfrom ibm_iam_account_settings;
Controls
The query is being used by the following controls: