IAM Root Account Has Access Keys

Overview

The root user for this AWS account has an access key attached to it. If the access key is compromised, it could be used to obtain full access to the AWS account and its resources. It is a best practice to only use a root user to create a first IAM user with administrator access, and not use the root user for day-to-day operations.

If you need to use an access key to work with an AWS account, you should create a separate IAM user with limited access following the principle of least privilege. If an access key for a root account is used in any application or script, you should replace it with one created for an IAM user and delete all access keys for the root user.

Vendor

AWS

Cloud Service

IAM

PCI DSS 2.1, PCI DSS 2.2, PCI DSS 7.2.1

CIS AWS v1.5.0 1.4, IAM.4

References

https://docs.aws.amazon.com/IAM/latest/UserGuide/id_root-user.html#id_root-user_manage_delete-key

Severity

Item Types

Custom::AWS::IAM::Account

Overview​

Vendor​

Cloud Service​

Related Requirements​

Related Controls​

References​

Severity​

Item Types​