Resource Type: AWS > IAM > Account Summary
The Account Summary resource type is part of the AWS Identity and Access Management (IAM) service. The IAM Account Summary provides an overview of the IAM resources in an AWS account, including the number of users, roles, policies, and groups.
Resource Context
Account Summary is a part of the IAM service.
Each Account Summary lives under an Account.
Controls
The primary controls for AWS > IAM > Account Summary are:
It is also targeted by these controls:
- AWS > CIS v1 > 1 Identity and Access Management > 1.13 Ensure MFA is enabled for the "root" account (Scored)
- AWS > CIS v1 > 1 Identity and Access Management > 1.14 Ensure hardware MFA is enabled for the "root" account (Scored)
- AWS > CIS v1.4 > 1 - Identity and Access Management > 1.05 - Ensure MFA is enabled for the 'root' user account (Automated)
- AWS > CIS v1.4 > 1 - Identity and Access Management > 1.06 - Ensure hardware MFA is enabled for the 'root' user account (Automated)
- AWS > CIS v2.0 > 1 - Identity and Access Management > 1.05 - Ensure MFA is enabled for the 'root' user account
- AWS > CIS v2.0 > 1 - Identity and Access Management > 1.06 - Ensure hardware MFA is enabled for the 'root' user account
- AWS > CIS v3.0 > 1 - Identity and Access Management > 1.05 - Ensure MFA is enabled for the 'root' user account
- AWS > CIS v3.0 > 1 - Identity and Access Management > 1.06 - Ensure hardware MFA is enabled for the 'root' user account
- AWS > HIPAA > IAM > IAM root user MFA should be enabled
- AWS > HIPAA > IAM > IAM root user should not have access keys
- AWS > NIST 800-53 > IAM > IAM root user MFA should be enabled
- AWS > NIST 800-53 > IAM > IAM root user should not have access keys
- AWS > PCI v3.2.1 > IAM > 1 IAM root user access key should not exist
Category
In Your Workspace
- Controls by Resource Type report
- Policy Settings by Resource Type report
- Resources by Resource Type report
Developers
- tmod:@turbot/aws-iam#/resource/types/accountSummary
- tmod:@turbot/turbot#/resource/categories/iam
- turbot graphql resource --id "tmod:@turbot/aws-iam#/resource/types/accountSummary"
Get Resource- select * from guardrails_resource where resource_type_uri = 'tmod:@turbot/aws-iam#/resource/types/accountSummary';
- select * from guardrails_policy_setting where filter = 'resourceTypeId:"tmod:@turbot/aws-iam#/resource/types/accountSummary"';
- select * from guardrails_notification where resource_type_uri = 'tmod:@turbot/aws-iam#/resource/types/accountSummary' and notification_type in ('resource_updated', 'resource_created');
Get ResourceGet Policy Settings (By Resource ID)Get Resource Notification
Resource Type URI
Category URI
GraphQL
CLI
Steampipe Query