πΌ 8.2 Privileged access rights
- Contextual name: πΌ 8.2 Privileged access rights
- ID:
/frameworks/iso-iec-27001-2022/08/02 - Located in: πΌ 8 Technological controls
Descriptionβ
The allocation and use of privileged access rights shall be restricted and managed.
Similarβ
- Internal
- ID:
dec-c-6071d426
- ID:
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (7)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS Account Root User credentials were used is the last 30 days π΄π’ | 1 | π΄ x1, π’ x6 |
| π AWS Account Root User has active access keys π’ | 1 | π’ x6 |
| π AWS EC2 Instance IAM role is not attached π’ | 1 | π’ x6 |
| π AWS IAM User has inline or directly attached policies π’ | 1 | π x1, π’ x5 |
| π AWS IAM User MFA is not enabled for all users with console password π’ | 1 | π’ x6 |
| π AWS IAM User with console and programmatic access set during the initial creation π’ | π’ x3 | |
| π AWS S3 Bucket MFA Delete is not enabled π π’ | 1 | π x1, π’ x6 |
Internal Rulesβ
| Rule | Policies | Flags |
|---|---|---|
| βοΈ dec-x-0a7801fb | 1 | |
| βοΈ dec-x-6c93750d | 1 | |
| βοΈ dec-x-4157c58a | 1 | |
| βοΈ dec-x-b10e98af | 1 | |
| βοΈ dec-x-b92b08f4 | 1 | |
| βοΈ dec-x-e58fd8e0 | 1 | |
| βοΈ dec-z-bb731292 | 1 |