Control: AWS > CIS v1 > 1 Identity and Access Management > 1.01 Avoid the use of the "root" account (Scored)

Configures auditing against a CIS Benchmark item.

Level: 1 (Scored)

The "root" account has unrestricted access to all resources in the AWS account. It is highly recommended that the use of this account be avoided.

Resource Types

This control targets the following resource types:

Control Type URI

tmod:@turbot/aws-cisv1#/control/types/r0101

Category URI

tmod:@turbot/cis#/control/categories/v070403

GraphQL

query controlType(id: "tmod:@turbot/aws-cisv1#/control/types/r0101") { … }

query controls(filter: "controlTypeId:'tmod:@turbot/aws-cisv1#/control/types/r0101'") { … }

CLI

Get Controls

turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-cisv1#/control/types/r0101"