ServiceNow CMDB CI relationship sync: faster, more complete →
Mods
AWS

Policy: AWS > CIS v3.0 > 1 - Identity and Access Management > 1.15 - Ensure IAM Users Receive Permissions Only Through Groups

Configures auditing against a CIS Benchmark item.

Level: 1

IAM users are granted access to services, functions, and data through IAM policies. There are four ways to define policies for a user: 1. Edit the user policy directly, aka an inline, or user, policy; 2. attach a policy directly to a user; 3. add the user to an IAM group that has an attached policy; 4. add the user to an IAM group that has an inline policy.

Only the third implementation is recommended.

Resource Types

This policy targets the following resource types:

Primary Policy

This policy is used with the following primary policy:

Controls

Policy Specification

Schema Type
string
Default
Per AWS > CIS v3.0 > 1 - Identity and Access Management
Valid Values [YAML]
  • Per AWS > CIS v3.0 > 1 - Identity and Access Management
    
  • Skip
    
  • Check: Benchmark
    

Category

In Your Workspace

Developers