AWS Identity and Access Management (IAM) enables you to manage access to AWS services and resources securely. Using IAM, you can create and manage AWS users and groups, and use permissions to allow and deny their access to AWS resources.
Ensure that user password reuse count is set higher or equal to 24
Ensure that IAM user passwords have a max age of 90 days or less.
Ensure that IAM user password length is set to 14 characters or greater.
Ensure that the password policy complexity requires at least 1 number.
Ensure that the password policy complexity requires at least 1 symbol.
Ensure that the password policy complexity requires at least 1 lower case character.
Ensure that the password policy complexity requires at least 1 upper case character.
Ensure that MFA is enabled for root account access.
Ensure that IAM console users are disabled if inactive for 90 days.
Ensure IAM access keys are rotated once every 90 days.
Ensure that the default access of 'Root' is not being used.
Ensure that the Root account is using a Hardware MFA.
Ensure that IAM access keys are not created for console users.
Ensure that IAM users with console access have MFA enabled.
Ensure that the Root user does not have access keys provisioned.
Ensure IAM users that have not logged in 30 days are disabled.
Are you curious as to what type of data Intelligent Discovery collects in relation to AWS vulnerabilities?
Login into our on-line demo to see a simulated view of what Intelligent Discovery collects and explains how to remediate.
Consolidate your inventory management with consistent and frequent security logs, inventories, and change logs. Dashboard reporting for extensive analytical value.learn more +
Access consolidated capacity, cost, and volume tools in a scaling environment without impacting production or breaking the bank.learn more +