Query: Cognito identity pools should not allow unauthenticated identities

Description

This control checks whether an Amazon Cognito identity pool is configured to allow unauthenticated identities. The control fails if guest access is activated (the AllowUnauthenticatedIdentities parameter is set to true) for the identity pool.

Query

Tables used in this query:

• aws_cognito_identity_pool

Controls using this query:

• 2 Cognito identity pools should not allow unauthenticated identities
• Cognito identity pools should not allow unauthenticated identities

SQL