v1.0 for Steampipe, Powerpipe, Flowpipe, 116 plugins, and 44 mods →
Steampipe logo 
Hub
Plugins
turbot/aws
Overview
496Tables
Versions
PowerpipeMods
GitHub
steampipe plugin install aws

Table: aws_identitystore_user - Query AWS Identity Store User using SQL

The AWS Identity Store User is a resource in AWS Identity Store that allows you to manage user identities. It provides a unified view of users and groups across AWS SSO and AWS Managed Microsoft AD, helping you to simplify identity management. It also enables you to perform identity-based actions in your AWS environment, enhancing the security and governance of your resources.

Table Usage Guide

The aws_identitystore_user table in Steampipe provides you with information about users within the AWS Identity Store. This table allows you, as a DevOps engineer, to query user-specific details, including user ID, username, and ARN. You can utilize this table to manage and audit user information, such as user identities, associated roles, and permissions. The schema outlines the various attributes of the user for you, including the user ID, ARN, username, and status.

Examples

Get user by ID

Explore which user is associated with a specific ID in the AWS Identity Store. This is useful to validate user identities and ensure appropriate access controls are in place.

select
  id,
  name
from
  aws_identitystore_user
where
  identity_store_id = 'd-1234567890'
  and id = '1234567890-12345678-abcd-abcd-abcd-1234567890ab';
select
  id,
  name
from
  aws_identitystore_user
where
  identity_store_id = 'd-1234567890'
  and id = '1234567890-12345678-abcd-abcd-abcd-1234567890ab';

List users by name

Determine the areas in which specific users are identified within a particular identity store. This is useful for pinpointing the presence and details of specific users within a given identity store, to manage and track user data.

select
  id,
  name
from
  aws_identitystore_user
where
  identity_store_id = 'd-1234567890'
  and name = 'test';
select
  id,
  name
from
  aws_identitystore_user
where
  identity_store_id = 'd-1234567890'
  and name = 'test';

Schema for aws_identitystore_user

NameTypeOperatorsDescription
_ctxjsonbSteampipe context in JSON form.
account_idtext=, !=, ~~, ~~*, !~~, !~~*The AWS Account ID in which the resource is located.
addressesjsonbA list of Address objects containing addresses associated with the user.
display_nametextA string containing the name of the user that is formatted for display when the user is referenced.
emailsjsonbA list of Email objects containing email addresses associated with the user.
external_idsjsonbA list of ExternalId objects that contains the identifiers issued to this resource by an external identity provider.
idtext=The identifier for a user in the identity store.
identity_store_idtext=The globally unique identifier for the identity store.
localetextA string containing the geographical region or location of the user.
nametextContains the user’s display name value.
nick_nametextA string containing an alternate name for the user.
partitiontextThe AWS partition in which the resource is located (aws, aws-cn, or aws-us-gov).
phone_numbersjsonbA list of PhoneNumber objects containing phone numbers associated with the user.
preferred_languagetextA string containing the preferred language of the user.
profile_urltextA string containing a URL that might be associated with the user.
regiontextThe AWS Region in which the resource is located.
sp_connection_nametext=, !=, ~~, ~~*, !~~, !~~*Steampipe connection name.
sp_ctxjsonbSteampipe context in JSON form.
timezonetextA string containing the time zone of the user.
titletextTitle of the resource.
user_typetextA string indicating the type of user.

Export

This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:

/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- aws

You can pass the configuration to the command with the --config argument:

steampipe_export_aws --config '<your_config>' aws_identitystore_user