Control: AWS > Turbot > IAM > Group > Managed

The control oversees the creation, updating, and deletion of Turbot-managed IAM groups. It also manages the association and disassociation of users to the group. An essential part of this control is its ability to handle policy attachments to group, ensuring that only authorized policies are associated, thereby maintaining strict access control and compliance.

Resource Types

This control targets the following resource types:

AWS > IAM > Group

In Your Workspace

Controls by Resource report
Controls by Control Type report

Developers

Control Type URI

tmod:@turbot/aws-iam#/control/types/iamTurbotGroupManaged

Category URI

tmod:@turbot/turbot#/control/categories/iam

GraphQL

query controlType(id: "tmod:@turbot/aws-iam#/control/types/iamTurbotGroupManaged") { … }

query controls(filter: "controlTypeId:'tmod:@turbot/aws-iam#/control/types/iamTurbotGroupManaged'") { … }

CLI

Get Controls

turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-iam#/control/types/iamTurbotGroupManaged"