💼 1.15 Ensure IAM Users Receive Permissions Only Through Groups - Level 1 (Automated)

Contextual name: 💼 1.15 Ensure IAM Users Receive Permissions Only Through Groups - Level 1 (Automated)
ID: /frameworks/cis-aws-v3.0.0/01/15
Located in: 💼 1 Identity and Access Management

Description

IAM users are granted access to services, functions, and data through IAM policies. There are four ways to define policies for a user: 1) Edit the user policy directly, aka an inline, or user, policy; 2) attach a policy directly to a user; 3) add the user to an IAM group that has an attached policy; 4) add the user to an IAM group that has an inline policy.

Only the third implementation is recommended.

Similar

Sections
- /frameworks/cis-aws-v4.0.0/01/15
- /frameworks/cis-aws-v2.0.0/01/15
Internal
- ID: dec-c-7d82ef3a

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 CIS AWS v2.0.0 → 💼 1.15 Ensure IAM Users Receive Permissions Only Through Groups - Level 1 (Automated)		1	1
💼 CIS AWS v4.0.0 → 💼 1.15 Ensure IAM users receive permissions only through groups (Automated)			1

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 CIS AWS v2.0.0 → 💼 1.15 Ensure IAM Users Receive Permissions Only Through Groups - Level 1 (Automated)		1	1
💼 CIS AWS v4.0.0 → 💼 1.15 Ensure IAM users receive permissions only through groups (Automated)			1

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags

Policies (1)

Policy	Logic Count	Flags
📝 AWS IAM User has inline or directly attached policies 🟢	1	🟠 x1, 🟢 x5

Internal Rules

Rule	Policies	Flags
✉️ dec-x-4157c58a	1

Description​

Similar​

Similar Sections (Take Policies From)​

Similar Sections (Give Policies To)​

Sub Sections​

Policies (1)​

Internal Rules​