Control: AWS > HIPAA > IAM > IAM root user should not have access keys

Access to systems and assets can be controlled by checking that the root user does not have access keys attached to their AWS Identity and Access Management (IAM) role.

Resource Types

This control targets the following resource types:

AWS > IAM > Account Summary

In Your Workspace

Controls by Resource report
Controls by Control Type report

Developers

Control Type URI

tmod:@turbot/aws-hipaa#/control/types/iamRootUserNoAccessKeys

Category URI

tmod:@turbot/turbot#/control/categories/complianceHipaa

GraphQL

query controlType(id: "tmod:@turbot/aws-hipaa#/control/types/iamRootUserNoAccessKeys") { … }

query controls(filter: "controlTypeId:'tmod:@turbot/aws-hipaa#/control/types/iamRootUserNoAccessKeys'") { … }

CLI

Get Controls

turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-hipaa#/control/types/iamRootUserNoAccessKeys"