Aqua CSPM

Users Password And Keys

Quick Info

Plugin TitleUsers Password And Keys
CloudAWS
CategoryIAM
DescriptionDetects whether users with a console password are also using access keys
More InfoAccess keys should only be assigned to machine users and should not be used for accounts that have console password access.
AWS Linkhttp://docs.aws.amazon.com/IAM/latest/UserGuide/ManagingCredentials.html
Recommended ActionRemove access keys from all users with console access.

Detailed Remediation Steps