Detections
Analytics

Revision 1.5

Jun 17, 2021
Miscellaneous
  • Metadata updated.
  • References updated.
Removed
  • _1.1 Avoid the use of the 'root' account - 'access_key_1_active != true'
  • _1.1 Avoid the use of the 'root' account - 'access_key_2_active != true'
  • _1.1 Avoid the use of the 'root' account - 'password_enabled != true'
  • _1.11 Ensure IAM password policy expires passwords within 90 days or less
  • _1.2 Ensure multi-factor authentication (MFA) is enabled for all IAM users that have a console password - 'Root Account MFA enabled'
  • _1.2 Ensure multi-factor authentication (MFA) is enabled for all IAM users that have a console password - 'User Accounts MFA enabled'
  • _1.5 Ensure IAM password policy requires at least one uppercase letter
  • _1.6 Ensure IAM password policy require at least one lowercase letter
  • _1.7 Ensure IAM password policy require at least one symbol
  • _1.8 Ensure IAM password policy require at least one number