CIS Control 16

Ensure IAM password policy requires at least one uppercase letter
Profile Applicability: Level 1 Description:  Password policies are, in part, used to enforce password complexity requirements. IAM password policies ca...
Sun, 29 Mar, 2020 at 11:38 AM
Ensure IAM password policy require at least one lowercase letter
Profile Applicability: Level 1 Description:  Password policies are, in part, used to enforce password complexity requirements. IAM password policies ca...
Sun, 29 Mar, 2020 at 11:39 AM
Ensure IAM password policy require at least one symbol
Profile Applicability: Level 1 Description:  Password policies are, in part, used to enforce password complexity requirements. IAM password policies ca...
Sun, 29 Mar, 2020 at 11:39 AM
Ensure IAM password policy require at least one number
Profile Applicability: Level 1 Description:  Password policies are, in part, used to enforce password complexity requirements. IAM password policies ca...
Sun, 29 Mar, 2020 at 11:39 AM
Ensure IAM password policy requires minimum length of 14 or greater
Profile Applicability: Level 1 Description:  Password policies are, in part, used to enforce password complexity requirements. IAM password policies ca...
Sun, 29 Mar, 2020 at 11:40 AM
Ensure IAM password policy expires passwords within 90 days or less
Profile Applicability: Level 1 Description:  IAM password policies can require passwords to be rotated or expired after a given number of days. It is r...
Sun, 29 Mar, 2020 at 11:40 AM
Ensure security questions are registered in the AWS account
Profile Applicability: Level 1 Description:  The AWS support portal allows account owners to establish security questions that can be used to authentic...
Sun, 29 Mar, 2020 at 11:40 AM
Ensure IAM policies are attached only to groups or roles
Profile Applicability: Level 1 Description:  By default, IAM users, groups, and roles have no access to AWS resources. IAM policies are the means by wh...
Sun, 29 Mar, 2020 at 11:40 AM
Ensure access keys are setup for all IAM users that have a console password
Profile Applicability: Level 1 Description:  AWS console defaults the checkbox for creating access keys to enabled. This results in many access keys be...
Sun, 12 Apr, 2020 at 2:07 PM
Ensure a log metric filter and alarm exist for Management Console sign-in without MFA
Profile Applicability: Level 1 Description:  Real-time monitoring of API calls can be achieved by directing CloudTrail Logs to CloudWatch Logs and esta...
Sun, 29 Mar, 2020 at 12:05 PM