Aws Password And Access Keys
Description
Detects AWS IAM users that have both console password access and API access keys enabled simultaneously. This configuration increases security risk by providing multiple authentication methods that could be compromised, violating the principle of least privilege.
Detection Strategy
• Checks each IAM user in the AWS account for presence of active access keys
• Verifies if the same user also has console password access enabled via login profile
• Reports a vulnerability when a user has both authentication methods (password and access keys) active
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan.If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.