Skip to main content

πŸ’Ό 1.21 Ensure IAM users are managed centrally via identity federation or AWS Organizations for multi-account environments - Level 2 (Manual)

  • Contextual name: πŸ’Ό 1.21 Ensure IAM users are managed centrally via identity federation or AWS Organizations for multi-account environments - Level 2 (Manual)
  • ID: /frameworks/cis-aws-v1.5.0/01/21
  • Located in: πŸ’Ό 1 Identity and Access Management

Description​

In multi-account environments, IAM user centralization facilitates greater user control. User access beyond the initial account is then provided via role assumption. Centralization of users can be accomplished through federation with an external identity provider or through the use of AWS Organizations.

Similar​

  • Sections
    • /frameworks/cis-aws-v2.0.0/01/21
    • /frameworks/cis-aws-v1.4.0/01/21
  • Internal
    • ID: dec-c-bbb9c57e

Similar Sections (Take Policies From)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό CIS AWS v1.4.0 β†’ πŸ’Ό 1.21 Ensure IAM users are managed centrally via identity federation or AWS Organizations for multi-account environments1
πŸ’Ό CIS AWS v2.0.0 β†’ πŸ’Ό 1.21 Ensure IAM users are managed centrally via identity federation or AWS Organizations for multi-account environments - Level 2 (Manual)1

Similar Sections (Give Policies To)​

SectionSub SectionsInternal RulesPoliciesFlags
πŸ’Ό CIS AWS v1.4.0 β†’ πŸ’Ό 1.21 Ensure IAM users are managed centrally via identity federation or AWS Organizations for multi-account environments1
πŸ’Ό CIS AWS v2.0.0 β†’ πŸ’Ό 1.21 Ensure IAM users are managed centrally via identity federation or AWS Organizations for multi-account environments - Level 2 (Manual)1

Sub Sections​

SectionSub SectionsInternal RulesPoliciesFlags

Policies (1)​

PolicyLogic CountFlags
πŸ“ AWS IAM User is not managed centrally in multi-account environments 🟒🟒 x3