Control: AWS > HIPAA > IAM > IAM user should not have any inline or attached policies

This rule ensures AWS Identity and Access Management (IAM) policies are attached only to groups or roles to control access to systems and assets.

Resource Types

This control targets the following resource types:

Control Type URI

tmod:@turbot/aws-hipaa#/control/types/iamUserNoInlineAttachedPolicies

Category URI

tmod:@turbot/turbot#/control/categories/complianceHipaa

GraphQL

query controlType(id: "tmod:@turbot/aws-hipaa#/control/types/iamUserNoInlineAttachedPolicies") { … }

query controls(filter: "controlTypeId:'tmod:@turbot/aws-hipaa#/control/types/iamUserNoInlineAttachedPolicies'") { … }

CLI

Get Controls

turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-hipaa#/control/types/iamUserNoInlineAttachedPolicies"