Skip to main content

📗 AWS Account

  • Contextual name: 📗 AWS Account
  • ID: /types/CA10__CaAwsAccount__c

Fields

LabelAPI NameTypeHelp
🔒ARNCA10__arn__cText(255)
🔒Access KeyCA10__accessKey__cText(64)
🔒🔌Account IDCA10__accountId__cText(32)
🔒Account NameNameText(80)
🔒AliasesCA10__aliases__cText(255)API Call: iam:ListAccountAliases
🔒Alternate Billing Contact EmailCA10__alternateBillingContactEmail__cText(255)API Call: account:GetAlternateContact
🔒Alternate Billing Contact NameCA10__alternateBillingContactName__cText(255)API Call: account:GetAlternateContact
🔒Alternate Billing Contact Phone NumberCA10__alternateBillingContactPhoneNumber__cText(255)API Call: account:GetAlternateContact
🔒Alternate Billing Contact TitleCA10__alternateBillingContactTitle__cText(255)API Call: account:GetAlternateContact
🔒Alternate Ops. Contact EmailCA10__alternateOpsContactEmail__cText(255)API Call: account:GetAlternateContact
🔒Alternate Ops. Contact NameCA10__alternateOpsContactName__cText(255)API Call: account:GetAlternateContact
🔒Alternate Ops. Contact Phone NumberCA10__alternateOpsContactPhoneNumber__cText(255)API Call: account:GetAlternateContact
🔒Alternate Ops. Contact TitleCA10__alternateOpsContactTitle__cText(255)API Call: account:GetAlternateContact
🔒Alternate Security Contact EmailCA10__alternateSecurityContactEmail__cText(255)API Call: account:GetAlternateContact
🔒Alternate Security Contact NameCA10__alternateSecurityContactName__cText(255)API Call: account:GetAlternateContact
🔒Alternate Security Contact Phone NumberCA10__alternateSecurityContactPhoneNumber__cText(255)API Call: account:GetAlternateContact
🔒Alternate Security Contact TitleCA10__alternateSecurityContactTitle__cText(255)API Call: account:GetAlternateContact
🔒🧮ApplicationCA10__application__cText(1300)
🔒Application Tier Api NameCA10__applicationTierApiName__cText(255)
🔒Application Tier Cascade AttachCA10__applicationTierCascadeAttach__cCheckbox
🔒Application Tier Client NameCA10__applicationTierClientName__cText(255)
🔒Application Tier Parent TypeCA10__applicationTierParentType__cText(255)
🔒Application Tier Parent UUIDCA10__applicationTierParentUuid__cText(255)
🔒Application Tier Unique NameCA10__applicationTierUniqueName__cText(255)
🔒🧮Backup Tag NameCA10__backupTagName__cText(1300)
🔒🧮Billing Tag NameCA10__billingTagName__cText(1300)
🔒CloudAware UUIDCA10__caUuid__cText(36)
🔒Collector: Role ARNCA10__collectorRoleArn__cText(255)
🔒Collector: User ARNCA10__userArn__cText(255)
🔒🧮Cost Allocation Extrapolation Tag NamesCA10__costAllocationExtrapolationTagNames__cText(1300)
🔒🧮Cost Allocation Report: ColumnsCA10__costAllocationReportColumns__cText(1300)
🔒Cost: Blended, 30-DayCA10__blendedCost30d__cCurrency(18, 2)
🔒Cost: Blended, Last Month SpendCA10__lastMonthSpend__cCurrency(18, 2)
🔒Cost: Blended, MTDCA10__mtdBlendedCost__cCurrency(18, 2)
🔒Cost: End Of Month ForecastCA10__costEndOfMonthForecast__cCurrency(17, 2)API Call: ce:GetCostForecast
🔒Cost: Unblended, 30-DayCA10__unblendedCost30d__cCurrency(18, 2)
🔒Cost: Unblended, Last Month SpendCA10__unblendedLastMonthSpend__cCurrency(18, 2)
🔒Cost: Unblended, MTDCA10__mtdUnblendedCost__cCurrency(18, 2)
🔒Created DateCreatedDateDateTime
🔒Current Month Spend ForecastCA10__currentMonthSpendForecast__cCurrency(18, 2)
🔒DeletedIsDeletedCheckbox
🔒Deprecated: 1-Month Spend ChangeCA10__spendChange1m__cPercent(18, 0)
🔒Deprecated: 3-Month Spend ChangeCA10__spendChange3m__cPercent(18, 0)
🔒Deprecated: 6-Month Spend ChangeCA10__spendChange6m__cPercent(18, 0)
🔒🧮Deprecated: CT-ST-101 CompliantCA10__policy101Compliant__cText(1300)Inline Help: CloudTrail not enabled for a region
🔒Deprecated: CloudAware IDCA10__caId__cNumber(18, 0)
🔒Deprecated: CloudAware Link IDCA10__caLinkId__cNumber(18, 0)
🔒Deprecated: CloudTrail Disabled For RegsCA10__cloudTrailDisabledForRegions__cLongTextArea(32768)
🔒Deprecated: CloudTrail Enabled All RegsCA10__cloudTrailEnabledInAllRegions__cCheckbox
🔒Deprecated: Current Month SpendCA10__currentMonthSpend__cCurrency(18, 2)
🔒🧮Deprecated: IAM-ST-035 CompliantCA10__policy035Compliant__cText(1300)Inline Help: Account uses weak password policy
🔒Deprecated: Password Policy CompliantCA10__passwordPolicyCompliant__cCheckbox
🔒Deprecated: Password Policy EnabledCA10__passwordPolicyEnabled__cCheckbox
🔒Deprecated: Root User Last AWS AccessCA10__rootUserLastAwsAccess__cDateTime
🔒Deprecated: Root User Last LoginCA10__rootUserLastLogin__cDateTime
🔒🧮EC2 InstancesCA10__ec2Instances__cNumber(18, 0)
🔒🧮EC2 ReservationsCA10__ec2Reservations__cNumber(18, 0)
🔒🧮Environment Tag NameCA10__environmentTagName__cText(1300)
🔒FMS Delegated AdminCA10A2__isFmsDelegatedAdmin__cText(255)
🔒GovCloudCA10__isGovCloud__cCheckbox
🔒Inspector: Delegated Admin Account IDCA10__inspectorDelegatedAdminAccountId__cText(255)
🔒Inspector: Delegated Admin StatusCA10__inspectorDelegatedAdminStatus__cText(255)
🔒Inspector: EC2 StatusCA10__inspectorEc2Status__cText(255)
🔒Inspector: ECR StatusCA10__inspectorEcrStatus__cText(255)
🔒Inspector: Is Delegated AdminCA10__inspectorIsDelegatedAdmin__cText(255)
🔒Inspector: Lambda Code StatusCA10__inspectorLambdaCodeStatus__cText(255)
🔒Inspector: Lambda StatusCA10__inspectorLambdaStatus__cText(255)
🔒Inspector: StatusCA10__inspectorStatus__cText(255)
🔒Last Activity DateLastActivityDateDate
🔒Last Modified DateLastModifiedDateDateTime
🔒Last UpdateCA10__lastUpdate__cDateTime
🔒Organization ARNCA10__organizationArn__cText(255)
🔒Organization Account IDCA10__organizationAccountId__cText(255)
🔒Organization Parent Root ARNCA10__organizationParentRootArn__cText(255)
🔒Organization Parent Unit ARNCA10__organizationParentUnitArn__cText(255)
🔒Organization StatusCA10__organizationStatus__cText(255)
🔒PartitionCA10__partition__cText(255)
🔒Payer Account IDCA10__payerAccountId__cText(255)
🔒🧮Projected Spending DifferenceCA10__projectedSpendingDifference__cCurrency(18, 2)
🔒QuickSIght: Account Subscription StatusCA10__quickSightAccountSubscriptionStatus__cText(255)API Call: quicksight:DescribeAccountSubscription
🔒QuickSight: Account NameCA10__quickSightAccountName__cText(255)API Call: quicksight:DescribeAccountSettings
🔒QuickSight: Authentication TypeCA10__quickSightAuthenticationType__cText(255)API Call: quicksight:DescribeAccountSubscription
🔒QuickSight: Default KMS Alias ARNCA10__quickSightDefaultKmsAliasArn__cText(255)API Call: quicksight:DescribeKeyRegistration
🔒QuickSight: Default KMS Key ARNCA10__quickSightDefaultKmsKeyArn__cText(255)API Call: quicksight:DescribeKeyRegistration
🔒QuickSight: Default KMS Key IDCA10__quickSightDefaultKmsKeyId__cText(255)API Call: quicksight:DescribeKeyRegistration
🔒QuickSight: Default Namespace ARNCA10A2__quickSightDefaultNamespaceArn__cText(255)API Call: quicksight:DescribeAccountSettings
🔒QuickSight: EditionCA10__quickSightEdition__cText(255)API Call: quicksight:DescribeAccountSettings
🔒QuickSight: IAM ID Center Instance ARNCA10A1__quickSightIamIdCenterInstanceArn__cText(255)API Call: quicksight:DescribeAccountSubscription
🔒QuickSight: IP Restr. VPC Endpoint RuleCA10__quickSightIpRestrictionVpcEndpointRule__cLongTextArea(32768)API Call: quicksight:DescribeIpRestriction
🔒QuickSight: IP Restriction EnabledCA10__quickSightIpRestrictionEnabled__cText(255)API Call: quicksight:DescribeIpRestriction
🔒QuickSight: IP Restriction RuleCA10__quickSightIpRestrictionRule__cLongTextArea(32768)API Call: quicksight:DescribeIpRestriction
🔒QuickSight: IP Restriction VPC RuleCA10__quickSightIpRestrictionVpcRule__cLongTextArea(32768)API Call: quicksight:DescribeIpRestriction
🔒QuickSight: Identity Region NameCA10__quickSightIdentityRegionName__cText(255)
🔒QuickSight: Notification EmailCA10__quickSightNotificationEmail__cText(255)API Call: quicksight:DescribeAccountSettings
🔒QuickSight: Public Sharing EnabledCA10__quickSightPublicSharingEnabled__cText(255)API Call: quicksight:DescribeAccountSettings
🔒QuickSight: Termination Protect. EnabledCA10__quickSightTerminationProtectionEnabled__cText(255)API Call: quicksight:DescribeAccountSettings
🔒Record IDIdText
🔒🧮Resource ID Tag NameCA10__resourceIdTagName__cText(1300)
🔒Role Status Reason: CollectorCA10__statusReason__cLongTextArea(131072)
🔒Role Status Reason: ConfluxCA10__roleStatusReasonConflux__cLongTextArea(131072)
🔒Role Status: CollectorCA10__status__cText(255)
TRAFFIC_LIGHT(No Access - YELLOW, Not In Use - YELLOW, Error - RED, OK - GREEN)		API Call: sts:GetCallerIdentity
🔒Role Status: ConfluxCA10__roleStatusConflux__cText(255)
TRAFFIC_LIGHT(No Access - YELLOW, Not In Use - YELLOW, Error - RED, OK - GREEN)		API Call: sts:GetCallerIdentity
🔒Role Status: Trusted AdvisorCA10__roleStatusTrustedAdvisor__cText(255)
🔒S3: Block Public ACLsCA10__s3BlockPublicAcls__cText(255)API Call: s3control:GetPublicAccessBlock
🔒S3: Block Public PolicyCA10__s3BlockPublicPolicy__cText(255)API Call: s3control:GetPublicAccessBlock
🔒S3: Ignore Public AclsCA10__s3IgnorePublicAcls__cText(255)API Call: s3control:GetPublicAccessBlock
🔒S3: Restrict Public BucketsCA10__s3RestrictPublicBuckets__cText(255)API Call: s3control:GetPublicAccessBlock
🔒SAML Provider CountCA10__samplProviderCount__cNumber(18, 0)API Call: iam:ListSAMLProviders
🔒Shield Advanced: Emergency ContactsCA10__shieldAdvancedEmergencyContacts__cLongTextArea(131072)API Call: shield:DescribeEmergencyContactSettings
🔒Shield Advanced: Max Protect Group Memb.CA10__shieldAdvancedMaxProtectionGroupMembers__cNumber(18, 0)API Call: shield:DescribeSubscription
🔒Shield Advanced: Max Protection GroupsCA10__shieldAdvancedMaxProtectionGroups__cNumber(18, 0)API Call: shield:DescribeSubscription
🔒Shield Advanced: Proactive EngagementCA10__shieldAdvancedProactiveEngagement__cText(255)API Call: shield:DescribeSubscription
🔒Shield Advanced: Resource Type LImitsCA10__shieldAdvancedResourceTypeLimits__cLongTextArea(131072)API Call: shield:DescribeSubscription
🔒Shield Advanced: SRT Log BucketsCA10__shieldAdvancedSrtLogBuckets__cLongTextArea(131072)API Call: shield:DescribeDRTAccess
🔒Shield Advanced: SRT Role ARNCA10__shieldAdvancedSrtRoleArn__cText(255)API Call: shield:DescribeDRTAccess
🔒Shield Advanced: SRT Support ConfiguredCA10__shieldAdvancedSrtSupportConfigured__cText(255)
🔒Shield Advanced: StateCA10__shieldAdvancedState__cText(255)API Call: shield:GetSubscriptionState
🔒Shield Advanced: Subscription ARNCA10__shieldAdvancedSubscriptionArn__cText(255)API Call: shield:DescribeSubscription
🔒Shield Advanced: Subscription Auto RenewCA10__shieldAdvancedSubscriptionAutoRenew__cText(255)API Call: shield:DescribeSubscription
🔒Shield Advanced: Subscription End TimeCA10__shieldAdvancedSubscriptionEndTime__cDateTimeAPI Call: shield:DescribeSubscription
🔒Shield Advanced: Subscription Start TimeCA10__shieldAdvancedSubscriptionStartTime__cDateTimeAPI Call: shield:DescribeSubscription
🔒Shield Advanced: Time Commitment, SecCA10__shieldAdvancedTimeCommitmentSec__cNumber(18, 0)API Call: shield:DescribeSubscription
🔒System ModstampSystemModstampDateTime
🔒Tag CountCA10__tagCount__cNumber(18, 0)API Call: organizations:ListTagsForResource
🔒TagsCA10__tags__cLongTextArea(131072)API Call: organizations:ListTagsForResource
🔒Tags JSONCA10__tagsJson__cLongTextArea(131072)API Call: organizations:ListTagsForResource

Extracts

NameExtracts File
🔒CA10__accountId__c🔌 object.extracts.yaml

Lookups

LabelAPI NameType
🔒Application TierCA10__applicationTier__c / CA10__applicationTier__rCA10__CaApplicationTier__c
🔒Collector: RoleCA10__collectorRole__c / CA10__collectorRole__r📗 AWS IAM Role
🔒Collector: UserCA10__user__c / CA10__user__r📗 AWS IAM User
🔒Created By IDCreatedById / CreatedByUser
🔒Inspector: Delegated Admin AccountCA10__inspectorDelegatedAdminAccount__c / CA10__inspectorDelegatedAdminAccount__r📗 AWS Account
🔒Last Modified By IDLastModifiedById / LastModifiedByUser
🔒OrganizationCA10__organization__c / CA10__organization__rCA10__CaAwsOrganization__c
🔒Organization AccountCA10__organizationAccount__c / CA10__organizationAccount__rCA10__CaAwsOrganizationAccount__c
🔒Organization Parent RootCA10__organizationParentRoot__c / CA10__organizationParentRoot__rCA10__CaAwsOrganizationRoot__c
🔒Organization Parent UnitCA10__organizationParentUnit__c / CA10__organizationParentUnit__rCA10__CaAwsOrganizationalUnit__c
🔒Owner IDOwnerId / OwnerGroup
User
🔒Payer AccountCA10__payerAccount__c / CA10__payerAccount__r📗 AWS Account
🔒QuickSight: Default KMS AliasCA10__quickSightDefaultKmsAlias__c / CA10__quickSightDefaultKmsAlias__rCA10__CaAwsKmsAlias__c
🔒QuickSight: Default KMS KeyCA10__quickSightDefaultKmsKey__c / CA10__quickSightDefaultKmsKey__r📗 AWS KMS Key
🔒QuickSight: Default NamespaceCA10A2__quickSightDefaultNamespace__c / CA10A2__quickSightDefaultNamespace__rCA10A2__CaAwsQuickSightNamespace__c
🔒QuickSight: IAM ID Center InstanceCA10A1__quickSightIamIdCenterInstance__c / CA10A1__quickSightIamIdCenterInstance__rCA10A1__CaAwsIamIdCenterInstance__c
🔒QuickSight: Identity RegionCA10__quickSightIdentityRegion__c / CA10__quickSightIdentityRegion__rCA10__CaAwsRegion__c
🔒Received Connection IDConnectionReceivedId / ConnectionReceivedPartnerNetworkConnection
🔒Record Type IDRecordTypeId / RecordTypeRecordType
🔒Sent Connection IDConnectionSentId / ConnectionSentPartnerNetworkConnection
🔒Shield Advanced: SRT RoleCA10__shieldAdvancedSrtRole__c / CA10__shieldAdvancedSrtRole__r📗 AWS IAM Role
Related TypeRelated List API NameForeign Key Field
🔒📗 AWS API Gateway MethodCA10A1__AWS_API_Gateway_Methods__rCA10A1__account__c
🔒📗 AWS API Gateway RouteCA10A1__AWS_API_Gateway_Routes__rCA10A1__account__c
🔒📗 AWS Athena Work GroupCA10A1__AWS_Athena_Work_Groups__rCA10A1__account__c
🔒📗 AWS Backup Backup VaultCA10A1__AWS_Backup_Backup_Vaults__rCA10A1__account__c
🔒📗 AWS Backup Recovery PointCA10A1__AWS_Backup_Recovery_Points__rCA10A1__account__c
🔒📗 AWS Connect InstanceCA10A1__AWS_Connect_Instances__rCA10A1__account__c
🔒📗 AWS Data Sync TaskCA10A1__AWS_Data_Sync_Tasks__rCA10A1__account__c
🔒📗 AWS DMS EndpointCA10A1__AWS_DMS_Endpoints__rCA10A1__account__c
🔒📗 AWS DMS Migration TaskCA10A1__AWS_DMS_Migration_Tasks__rCA10A1__account__c
🔒📗 AWS DMS Replication InstanceCA10A1__AWS_DMS_Replication_Instdances__rCA10A1__account__c
🔒📗 AWS EC2 Launch Template VersionCA10A1__AWS_EC2_Launch_Template_Versions__rCA10A1__account__c
🔒📗 AWS EKS ClusterCA10A1__AWS_EKS_Clusters__rCA10A1__account__c
🔒📗 AWS IAM Access AnalyzerCA10A1__AWS_IAM_Access_Analyzers__rCA10A1__account__c
🔒📗 AWS VPC Transit GatewayCA10A1__AWS_VPC_Transit_Gateways__rCA10A1__account__c
🔒📗 AWS Account RegionCA10__AWS_Account_Regions__rCA10__account__c
🔒📗 AWS AccountCA10__AWS_Accounts1__rCA10__inspectorDelegatedAdminAccount__c
🔒📗 AWS AccountCA10__AWS_Accounts__rCA10__payerAccount__c
🔒📗 AWS ACM CertificateCA10__AWS_ACM_Certificates__rCA10__account__c
🔒📗 AWS API Gateway APICA10__AWS_API_Gateway_REST_APIs__rCA10__account__c
🔒📗 AWS API Gateway StageCA10__AWS_API_Gateway_Stages__rCA10__account__c
🔒📗 AWS EC2 Auto Scaling Group Tfc.Src.LinkCA10__AWS_EC2_Auto_Scaling_Group_Tfc_Src_Links__rCA10__account__c
🔒📗 AWS EC2 Auto Scaling GroupCA10__AWS_EC2_Auto_Scaling_Groups__rCA10__account__c
🔒📗 AWS S3 BucketCA10__AWS_S3_Buckets__rCA10__account__c
🔒📗 AWS CloudFront Cache BehaviorCA10__AWS_CloudFront_Cache_Behaviors__rCA10__account__c
🔒📗 AWS ElastiCache ClusterCA10__AwsElastiCacheClusters__rCA10__account__c
🔒📗 AWS ElastiCache NodeCA10__AWS_ElastiCache_Nodes1__rCA10__account__c
🔒📗 AWS CloudTrail TrailCA10__AWS_CloudTrail_Trails__rCA10__account__c
🔒📗 AWS CodeBuild ProjectCA10__AWS_CodeBuild_Projects__rCA10__account__c
🔒📗 AWS Config RecorderCA10__AWS_Config_Settings__rCA10__account__c
🔒📗 AWS DAX ClusterCA10__AWS_DAX_Clusters__rCA10__account__c
🔒📗 AWS RDS ClusterCA10__AWS_RDS_Clusters__rCA10__account__c
🔒📗 AWS RDS InstanceCA10__AWS_RDS_Instances__rCA10__account__c
🔒📗 AWS RDS SnapshotCA10__AWS_RDS_Snapshots__rCA10__account__c
🔒📗 AWS CloudFront DistributionCA10__CaAwsDistributions__rCA10__account__c
🔒📗 AWS DynamoDB BackupCA10__AWS_DynamoDB_Backups__rCA10__account__c
🔒📗 AWS DynamoDB TableCA10__AWS_DynamoDB_Tables__rCA10__account__c
🔒📗 AWS EFS File SystemCA10__AWS_EFS_File_Systems__rCA10__account__c
🔒📗 AWS IAM PolicyCA10__AWS_IAM_Policies__rCA10__account__c
🔒📗 AWS IAM Role Policy AttachmentCA10__AWS_IAM_Role_Policy_Attachments__rCA10__account__c
🔒📗 AWS EC2 ImageCA10__AWS_EC2_Images__rCA10__account__c
🔒📗 AWS EC2 InstanceCA10__AWS_EC2_Instances__rCA10__account__c
🔒📗 AWS KMS KeyCA10__AWS_KMS_Keys__rCA10__account__c
🔒📗 AWS Lambda FunctionCA10__AWS_Lambda_Functions__rCA10__account__c
🔒📗 AWS EC2 Launch ConfigurationCA10__AWS_EC2_Launch_Configurations__rCA10__account__c
🔒📗 AWS ELB Load BalancerCA10__AWS_Load_Balancers__rCA10__account__c
🔒📗 AWS VPC Network ACL EntryCA10__networkAclEntities__rCA10__account__c
🔒📗 AWS VPC Network ACLCA10__networkAcls__rCA10__account__c
🔒📗 AWS CloudFront OriginCA10__AWS_CloudFront_Origins__rCA10__account__c
🔒📗 AWS IAM Password PolicyCA10__AWS_IAM_Password_Policies__rCA10__account__c
🔒📗 AWS Redshift ClusterCA10__AWS_Redshift_Clusters__rCA10__account__c
🔒📗 AWS IAM RoleCA10__roles__rCA10__account__c
🔒📗 AWS VPC Route Table AssociationCA10__routeTableAssociation__rCA10__account__c
🔒📗 AWS VPC RouteCA10__routes__rCA10__account__c
🔒📗 AWS EC2 Security Group RuleCA10__AWS_EC2_Security_Group_Rules__rCA10__account__c
🔒📗 AWS EC2 Security GroupCA10__AWS_EC2_Security_Groups__rCA10__account__c
🔒📗 AWS IAM Server CertificateCA10__serverCertificate__rCA10__account__c
🔒📗 AWS EBS SnapshotCA10__Snapshots__rCA10__account__c
🔒📗 AWS VPC SubnetCA10__subnets__rCA10__account__c
🔒📗 AWS IAM UserCA10__users__rCA10__account__c
🔒📗 AWS VPC VPN Gateway TelemetryCA10__vgwTelemetries__rCA10__account__c
🔒📗 AWS EBS VolumeCA10__Volumes__rCA10__account__c
🔒📗 AWS VPC EndpointCA10__AWS_VPC_Endpoints__rCA10__account__c
🔒📗 AWS VPCCA10__vpcs__rCA10__account__c
🔒📗 AWS VPC VPN ConnectionCA10__vpnConnections__rCA10__account__c

Extract Files

ExtractParentyFlags
🔌 object.extracts.yaml📗 AWS Account

Logic Files

LogicPolicyFlags
🧠 prod.logic.yaml 🟢📝 AWS Account Config is not enabled in all regions 🟢🟢 x3
🧠 prod.logic.yaml 🟢📝 AWS Account EBS Volume Encryption Attribute is not enabled in all regions 🟢🟢 x3
🧠 wip.logic.yaml 🔴🟠📝 AWS Account Has No IAM Users 🔴🟠🔴 x1, 🟠 x1
🧠 prod.logic.yaml 🟢📝 AWS Account IAM Access Analyzer is not enabled for all regions 🟢🟢 x3
🧠 prod.logic.yaml 🟢📝 AWS Account IAM Password Policy minimum password length is 14 characters or less 🟢🟢 x3
🧠 prod.logic.yaml 🟢📝 AWS Account IAM Password Policy Number of passwords to remember is not set to 24 🟢🟢 x3
🧠 prod.logic.yaml 🟢📝 AWS Account Multi-Region CloudTrail is not enabled 🟢🟢 x3
🧠 prod.logic.yaml 🟢📝 AWS Account Object-level CloudTrail Logging for Read Events for S3 Buckets is not enabled 🟢🟢 x3
🧠 prod.logic.yaml 🟢📝 AWS Account Object-level CloudTrail Logging for Write Events for S3 Buckets is not enabled 🟢🟢 x3
🧠 prod.logic.yaml 🟠🟢📝 AWS Account Security Hub is not enabled 🟢🟠 x1, 🟢 x2
🧠 prod.logic.yaml 🟢📝 AWS Support Role is not created 🟢🟢 x3