Users with Password and Keys Enabled

Overview

The "Users with Password and Keys Enabled" widget identifies IAM users who have both a password and access keys enabled. This combination of credentials can pose a security risk if users do not need both methods of authentication for accessing AWS resources.

Why It Matters

For IT Engineers:

  1. Credential Redundancy:

    • Helps identify users with unnecessary combinations of credentials, reducing the risk of exposure.

  2. Access Management:

    • Allows IT engineers to enforce least privilege access by ensuring users only have the credentials they need.

  3. Resource Optimization:

    • Streamlines user access management by identifying and potentially disabling redundant credentials.

For Security Engineers:

  1. Security Risk:

    • Having both password and access keys enabled increases the attack surface. This widget helps monitor and mitigate such risks.

  2. Access Control:

    • Ensures users are not over-permissioned, reducing the likelihood of credential misuse or compromise.

  3. Compliance:

    • Supports compliance with security policies by ensuring users' credentials are appropriately managed and follow best practices.

PreviousUsers that Have Access Key Enabled but Never UsedNextDistribution of Access Key Status

Last updated

Was this helpful?