IAM Audit

Checks performed

• Root Account Should Not Have Access Keys
• Root Account Access Keys Should Be Rotated
• Certificates Should Not Be Tied With Root Account
• Root Account Certificates Should Be Rotated
• Root Account Should Have MFA
• Root Account Should Have Password Rotation
• AWS Account Should Have A Minimum Number of Admins
• AWS Account Should Not Have Too Many Admins
• User Account Without Any Usage Should Be Removed
• MFA Should Be Enabled On User Accounts
• User Account Access keys Should Be Rotated
• User Account Certificates Should Be Rotated
• Inactive User Account Access keys Should Be Dropped
• User Console Access Inactive
• User Account Service Inactivity
• Users Should Not Have Inline Policies
• User Account Should Not Have Multiple Access Keys
• Inactive Roles Should Be Removed
• Role Service Inactivity
• Roles Should Not Have Inline Policies
• Groups Without Users Should Be Removed
• ELB Certificates Should Be Rotated
• Complex Password Policy Should Be Present