πΌ 4 Regulated entities would typically put in place processes to ensure that identities and credentials are issued, managed, verified, revoked and audited for authorised devices, users and software/processes.
- Contextual name: πΌ 4 Regulated entities would typically put in place processes to ensure that identities and credentials are issued, managed, verified, revoked and audited for authorised devices, users and software/processes.
- ID:
/frameworks/apra-cpg-234/c/4 - Located in: πΌ Attachment C - Identity and access
Descriptionβ
Empty...
Similarβ
- Internal
- ID:
dec-c-af51c8ae
- ID:
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (8)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS Account IAM Password Policy Number of passwords to remember is not set to 24 π’ | 1 | π’ x6 |
| π AWS EC2 Instance IAM role is not attached π’ | 1 | π’ x6 |
| π AWS IAM User Access Keys are not rotated every 90 days or less π’ | 1 | π’ x6 |
| π AWS IAM User has inline or directly attached policies π’ | 1 | π x1, π’ x5 |
| π AWS IAM User MFA is not enabled for all users with console password π’ | 1 | π’ x6 |
| π AWS KMS Symmetric CMK Rotation is not enabled π’ | 1 | π’ x6 |
| π AWS S3 Bucket MFA Delete is not enabled π π’ | 1 | π x1, π’ x6 |
| π Azure Key Vault Role Based Access Control is not enabled π’ | 1 | π’ x6 |
Internal Rulesβ
| Rule | Policies | Flags |
|---|---|---|
| βοΈ dec-x-4d6fee7a | 1 | |
| βοΈ dec-x-6c93750d | 1 | |
| βοΈ dec-x-4157c58a | 1 | |
| βοΈ dec-x-b92b08f4 | 1 | |
| βοΈ dec-x-bcb0c78f | 1 | |
| βοΈ dec-x-c8041456 | 1 | |
| βοΈ dec-x-f7c2faac | 1 | |
| βοΈ dec-z-bb731292 | 1 |