CIS Control 16

Ensure IAM password policy requires at least one uppercase letter
Profile Applicability: Level 1 Description: Password policies are, in part, used to enforce password complexity requirements. IAM password policies can...
Wed, 29 Mar, 2023 at 8:25 AM
Ensure IAM password policy require at least one lowercase letter
Profile Applicability: Level 1 Description: Password policies are, in part, used to enforce password complexity requirements. IAM password policies ca...
Wed, 29 Mar, 2023 at 7:30 AM
Ensure IAM password policy require at least one symbol
Profile Applicability: Level 1 Description: Password policies are, in part, used to enforce password complexity requirements. IAM password policies ca...
Wed, 29 Mar, 2023 at 7:28 AM
Ensure IAM password policy require at least one number
Profile Applicability: Level 1 Description:  Password policies are, in part, used to enforce password complexity requirements. IAM password policies can b...
Wed, 29 Mar, 2023 at 8:30 AM
Ensure IAM password policy requires minimum length of 14 or greater
Profile Applicability: Level 1 Description:  Password policies are, in part, used to enforce password complexity requirements. IAM password policies ca...
Wed, 29 Mar, 2023 at 8:41 AM
Ensure IAM password policy expires passwords within 90 days or less
Profile Applicability: Level 1 Description: The custom password policy on your AWS account to specify complexity requirements and mandatory rotation pe...
Mon, 28 Feb, 2022 at 4:36 AM
Ensure security questions are registered in the AWS account
Profile Applicability: Level 1 Description:  The AWS support portal allows account owners to establish security questions that can be used to authentic...
Wed, 29 Mar, 2023 at 7:05 AM
Ensure IAM policies are attached only to groups or roles
Profile Applicability: Level 1 Description You know user group is a collection of users. You can use user groups to specify permissions for a collectio...
Fri, 31 Mar, 2023 at 3:53 AM
Ensure access keys are setup for all IAM users that have a console password
Profile Applicability: Level 1 Description:  Access keys are long-term credentials for an IAM user, You can use access keys to sign programmatic reques...
Mon, 3 Apr, 2023 at 2:50 AM
Ensure a log metric filter and alarm exist for Management Console sign-in without MFA
Profile Applicability: Level 1 Description: Real-time monitoring of API calls can be achieved by directing CloudTrail Logs to CloudWatch Logs and estab...
Mon, 21 Feb, 2022 at 5:35 AM