Turbot Guardrails Hub 
Hub
Policy Packs
Enforce MFA Is Enabled for AWS IAM Users
Overview
2
Policy Settings
0
Variables
10
PermissionsDevelopersGithub

Permissions

The Enforce MFA Is Enabled for AWS IAM Users policy pack requires 10 permissions:

  • iam:DeactivateMFADevice
  • iam:DeleteAccessKey
  • iam:DeleteLoginProfile
  • iam:DeleteUser
  • iam:DeleteUserPolicy
  • iam:DeleteVirtualMFADevice
  • iam:DetachUserPolicy
  • iam:ListAccessKeys
  • iam:ListMFADevices
  • iam:RemoveUserFromGroup