Cloud Defense Logo

Products

Solutions

Company

Book A Live Demo

IAM Root User No Access Keys Rule

This rule ensures that the IAM root user does not have access keys for enhanced security.

RuleIAM root user should not have access keys
FrameworkGeneral Data Protection Regulation (GDPR)
Severity
Medium

Rule Description:

The IAM root user should not have any access keys associated with it for compliance with the General Data Protection Regulation (GDPR). The root user has unrestricted access to all resources in the AWS account and should not have access keys to minimize the risk of unauthorized access to sensitive data governed by GDPR.

Troubleshooting Steps:

If the IAM root user has access keys configured, it could pose a security risk and potential violation of GDPR compliance. Follow these troubleshooting steps to ensure the root user does not have any access keys:

  1. 1.

    Step 1: Log in to the AWS Management Console using the root user credentials.

  2. 2.

    Step 2: Go to the IAM service by searching for "IAM" in the AWS Management Console.

  3. 3.

    Step 3: In the IAM dashboard, click on "Users" in the left navigation menu.

  4. 4.

    Step 4: Locate and click on the root user from the list of users displayed.

  5. 5.

    Step 5: In the "Summary" tab for the root user, scroll down to the "Access keys" section.

  6. 6.

    Step 6: Check if there are any access keys listed. If any access keys are present, it indicates a violation of the rule.

  7. 7.

    Step 7: Remove any existing access keys associated with the root user by selecting the key and clicking on "Delete Access Key" in the "Actions" dropdown.

  8. 8.

    Step 8: After deleting the access keys, verify that no access keys are listed for the root user.

Remediation Steps:

To remove access keys for the IAM root user, follow these steps:

  1. 1.

    Step 1: Log in to the AWS Management Console using the root user credentials.

  2. 2.

    Step 2: Go to the IAM service by searching for "IAM" in the AWS Management Console.

  3. 3.

    Step 3: In the IAM dashboard, click on "Users" in the left navigation menu.

  4. 4.

    Step 4: Locate and click on the root user from the list of users displayed.

  5. 5.

    Step 5: In the "Summary" tab for the root user, scroll down to the "Access keys" section.

  6. 6.

    Step 6: Check if there are any access keys listed. If any access keys are present, proceed to the next step.

  7. 7.

    Step 7: Select the access key that needs to be removed.

  8. 8.

    Step 8: Click on the "Actions" dropdown and choose "Delete Access Key."

  9. 9.

    Step 9: Confirm the deletion by clicking on "Yes, delete" in the confirmation dialog.

  10. 10.

    Step 10: Repeat steps 7 to 9 for any additional access keys listed.

  11. 11.

    Step 11: After deleting all access keys, verify that no access keys are listed for the root user.

By following these steps, you will ensure that the IAM root user does not have any access keys associated with it, maintaining compliance with the General Data Protection Regulation (GDPR).

Is your System Free of Underlying Vulnerabilities?
Find Out Now