Skip to main content

💼 User Account Management

ID: /frameworks/cloudaware/identity-and-access-governance/user-account-management

Description

Policies that identify user account lifecycle and account state risks (inactive, stale, or misconfigured accounts).

Similar

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance

Policies (9)

Policy	Logic Count	Flags	Compliance
🛡️ AWS CloudTrail Root Account Usage Monitoring is not enabled🟢⚪		🟢 x2, ⚪ x1	no data
🛡️ AWS IAM User has inline or directly attached policies🟢	1	🟠 x1, 🟢 x5	no data
🛡️ AWS IAM User is not managed centrally in multi-account environments🟢⚪		🟢 x2, ⚪ x1	no data
🛡️ Azure disabled User Accounts have read, write, or owner permissions🟢⚪		🟢 x2, ⚪ x1	no data
🛡️ Consumer Google Accounts are used🟢⚪		🟢 x2, ⚪ x1	no data
🛡️ Microsoft Entra ID Admin accounts are not used for daily operations🟢⚪		🟢 x2, ⚪ x1	no data
🛡️ Microsoft Entra ID Guest Users are not reviewed on a regular basis🟢⚪		🟢 x2, ⚪ x1	no data
🛡️ Microsoft Entra ID Guest Users restricted to their own directory objects🟢	1	🟢 x6	no data
🛡️ Microsoft Entra ID Owners Can Manage Group Membership Requests In The Access Panel is set to Yes🟢⚪		🟢 x2, ⚪ x1	no data

Description
Similar
Sub Sections
Policies (9)