iam_account_password_policy_strong_min_reuse_24

IAM password policies for users should have strong configurations

iam_user_unused_credentials_90

IAM user credentials that have not been used in 90 days should be disabled

Inactive identifiers pose a risk to organizational information because attackers may exploit an inactive identifier to gain undetected access to organizational devices. The owners of the inactive accounts may not notice if unauthorized access to the account has been obtained.

nist_800_171_rev_2_3_5_6

nist_800_171_rev_2_3_5

3.5 Identification and Authentication

3.5.6 Disable identifiers after a defined period of inactivity

aws_compliance

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, FFIEC, PCI, NIST, HIPAA, RBI CSF, GDPR, SOC 2, Audit Manager Control Tower, FedRAMP, GxP and AWS Foundational Security Best Practices controls across all your AWS accounts using Steampipe.

AWS Compliance

Apache License 2.0

steampipe-mod-aws-compliance

turbot/aws_compliance

Benchmark: 3.5.6 Disable identifiers after a defined period of inactivity

Description

Usage

Controls

Tags

Steampipe

Resources

Community