Vulnerabilities
Misconfiguration
Runtime Security
Compliance
AWS > IAM >

Empty Groups

LOW
Source
CloudSploit
ID
empty-groups
management console

Empty Groups

Ensures all groups have at least one member

While having empty groups does not present a direct security risk, it does broaden the management landscape which could potentially introduce risks in the future.

Follow the appropriate remediation steps below to resolve the issue.

  1. Log in to the AWS Management Console.

  2. Select the “Services” option and search for IAM. Step

  3. Scroll down the left navigation panel and choose “User Groups” under “Access management”. Step

  4. Under the “User Groups” configuration panel check the “Users” column. If the “Users” column won’t have any user make sure to delete that “Group” as it can potentially increase risks in the future. Select the “Groups” with no user.Step

  5. Click on the “Delete” button at the top right to delete the selected “User Groups”.Step

  6. In the “Delete User groups” pop up type “delete” in the text box and click “Delete” button to delete the selected “Group”.Step

  7. Repeat steps number 3 and 6 to verify other “Groups” with at least one user.

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2024 Aqua Security Software Ltd.   Privacy Policy | Terms of Use