Aqua CSPM

Empty Groups

Quick Info

Plugin TitleEmpty Groups
CloudORACLE
CategoryIdentity
DescriptionEnsures all groups have at least one member.
More InfoWhile having empty groups does not present a direct security risk, it does broaden the management landscape which could potentially introduce risks in the future.
ORACLE Linkhttps://docs.oracle.com/cd/E10391_01/doc.910/e10360/usergroups.htm
Recommended ActionRemove identity groups with no members.

Detailed Remediation Steps

  1. Log in to the Oracle Cloud Platform Console.
  2. Scroll down the left navigation panel and choose the “Identity” under the “Governance and Administration.”
  3. On the Identity menu, select the “Groups” option.
  4. On the “Groups” page, select the “User group” by clicking on the “Name” as a link to access the group.
  5. On the selected group check that the group have at leat one member. If not then it’s not as best practices recommended by Oracle.
  6. Repeat steps number 2 - 5 to check other groups in the account.
  7. Navigate to “Identity” under the “Governance and Administration” and select the “Groups” to delete the group one no users.
  8. Select the group with no users by clicking on the checkbox and click on the “Delete” option at the top to remove the selected group.
  9. On the “Delete group” tab, click on the “Delete” button to make the changes.
  10. Repeat steps number 7 - 9 to remove identity groups with no members.