Control: AWS > IAM > User > Policy Attachments > Approved
Configure AWS IAM user policies binding Approved
checking. This policy defines whether to verify the IAM user attached policies are approved (per Approved > Compiled Rules
), as well as the subsequent action to take on unapproved items. If set to "Enforce: Delete unapproved", any unapproved attached policy will be removed.
Resource Types
This control targets the following resource types:
Primary Policies
The following policies can be used to configure this control:
Category
In Your Workspace
Developers
- tmod:@turbot/aws-iam#/control/types/userPolicyAttachmentsApproved
- tmod:@turbot/turbot#/control/categories/resourceApproved
- turbot graphql controls --filter "controlTypeId:tmod:@turbot/aws-iam#/control/types/userPolicyAttachmentsApproved"
Get Controls
Control Type URI
Category URI
GraphQL
CLI