Skip to main content

🔌 AWS IAM User - object.extracts.yaml

  • Contextual name: 🔌 object.extracts.yaml
  • ID: /types/CA10__CaAwsUser__c/object.extracts.yaml

Used In

LogicPolicyFlags
🧠 prod.logic.yaml🟢🛡️ AWS Account Root User credentials were used is the last 30 days🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS Account Root User has active access keys🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS Account Root User MFA is not enabled.🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS Account Root User signing certificates are active🟢🟢 x3
🧠 prod.logic.yaml🟢🛡️ AWS IAM User has no active credentials🟢🟢 x3

Content

Open File

---
extracts:
  - name: CA10__mfaDeviceType__c
    # Acceptable values are: null, "Hardware", "Virtual"
    value:
      FIELD: 
        path: CA10__mfaDeviceType__c
        undeterminedIf:
          noAccessDelegate:
            path: CA10__virtualMfaState__c
            currentStateMessage: Possible access issue with iam:GetAccountSummary, iam:ListVirtualMFADevices or iam:ListMFADevices
# Not Nullable. Can't have no access, retrieved via iam:ListUsers
  - name: "CA10__userName__c"
    value:
      FIELD:
        path: "CA10__userName__c"
  - name: "CA10__accessKeysCount__c"
    value:
      FIELD:
        path: "CA10__accessKeysCount__c"
# Not nullable
  - name: "CA10__createDate__c"
    value:
      FIELD:
        path: "CA10__createDate__c"