Control: AWS > CIS v2.0 > 1 - Identity and Access Management > 1.13 - Ensure there is only one active access key available for any single IAM user

Configures auditing against a CIS Benchmark item.

Level: 1

Access keys are long-term credentials for an IAM user or the AWS account 'root' user. You can use access keys to sign programmatic requests to the AWS CLI or AWS API (directly or using the AWS SDK).

Resource Types

This control targets the following resource types:

AWS > IAM > Credential Report

Primary Policies

The following policies can be used to configure this control:

1.13 - Ensure there is only one active access key available for any single IAM user

In Your Workspace

Developers

Control Type URI

tmod:@turbot/aws-cisv2-0#/control/types/r0113

Category URI

tmod:@turbot/cis#/control/categories/v0704

GraphQL

query controlType(id: "tmod:@turbot/aws-cisv2-0#/control/types/r0113") { … }

query controls(filter: "controlTypeId:'tmod:@turbot/aws-cisv2-0#/control/types/r0113'") { … }

CLI

Get Controls

turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-cisv2-0#/control/types/r0113"