Query: 1.11 Ensure API keys are not created for tenancy administrator users

Description

Tenancy administrator users have full access to the organization's OCI tenancy. API keys associated with user accounts are used for invoking the OCI APIs via custom programs or clients like CLI/SDKs.

Query

Tables used in this query:

• oci_identity_api_key
• oci_identity_group
• oci_identity_user

Controls using this query:

• 1.11 Ensure API keys are not created for tenancy administrator users
• 1.11 Ensure API keys are not created for tenancy administrator users
• 1.12 Ensure API keys are not created for tenancy administrator users

SQL