Ensure IAM users that are inactive for 30 days or more are deactivated

Error: IAM users that are inactive for 30 days or more are not deactivated

Bridgecrew Policy ID: BC_AWS_IAM_30
Severity: MEDIUM

IAM users that are inactive for 30 days or more are not deactivated

Description

IAM users who have not logged into AWS and have no API activity for 30 days should be considered inactive.

We recommend IAM users that are not active for 30 days or more have their accounts terminated.


Did this page help you?