AWS > IAM > Root Account Active Signing Certificates
UNKNOWN
Source
CloudSploit
ID
root-account-active-signing-certificates

Root Account Active Signing Certificates

Ensures the root user is not using x509 signing certificates

AWS supports using x509 signing certificates for API access, but these should not be attached to the root user, which has full access to the account.

Delete the x509 certificates associated with the root account.