Control: 1.2 Ensure no root account access key exists
Access keys provide programmatic access to a given Alibaba Cloud account. It is recommended that all access keys associated with the root account be removed.
Perform the following to delete or disable active root access keys:
- Logon to RAM console by using your Alibaba Cloud account (root account).
- Move the pointer over the account icon in the upper-right corner and click
- On the
Security Managementpage, find the target access keys and perform the following operations:
Disableto disable the target access keys temporarily.
Deleteto delete the target access keys permanently.
Run the control in your terminal:
steampipe check alicloud_compliance.control.cis_v100_1_2
Snapshot and share results via Steampipe Cloud:
steampipe loginsteampipe check --share alicloud_compliance.control.cis_v100_1_2
This control uses a named query:ram_root_account_no_access_keys