standard
turbot/aws_compliance
Get Involved
Version
Pipeline: Correct one IAM user with unused access key from 90 days or more
Runs corrective action to deactivate a IAM user access key that have been unused for 90 days or more.
Run the pipeline
To run this pipeline from your terminal:
flowpipe pipeline run aws_compliance.pipeline.correct_one_iam_user_with_access_key_age_90_days \ --arg 'title=<string>' \ --arg 'user_name=<string>' \ --arg 'access_key_id=<string>' \ --arg 'access_key_create_date=<string>' \ --arg 'access_key_create_day=<string>' \ --arg 'conn=<connection.aws>'
Use this pipeline
To call this pipeline from your pipeline, use a step:
step "pipeline" "step_name" { pipeline = aws_compliance.pipeline.correct_one_iam_user_with_access_key_age_90_days args = { title = <string> user_name = <string> access_key_id = <string> access_key_create_date = <string> access_key_create_day = <string> conn = <connection.aws> }}
Params
Name | Type | Required | Description | Default |
---|---|---|---|---|
title | string | Yes | Title of the resource, to be used as a display name. | - |
user_name | string | Yes | The name of the IAM user. | - |
access_key_id | string | Yes | The access key ID of the IAM user. | - |
access_key_create_date | string | Yes | The IAM user access key creation date. | - |
access_key_create_day | string | Yes | The number of days since the IAM user's access key was created. | - |
conn | connection.aws | Yes | Name of the AWS connection to be used for any authenticated actions. | - |
notifier | notifier | Yes | The name of the notifier to use for sending notification messages. | notifier.default |
notification_level | string verbose , info , error | Yes | The verbosity level of notification messages to send. | info |
approvers | list(notifier) | Yes | List of notifiers to be used for obtaining action/approval decisions. | notifier.default |
default_action | string notify , skip , deactivate_access_key | Yes | The default action to use when there are no approvers. | notify |
enabled_actions | list(string) skip , deactivate_access_key | Yes | The list of enabled actions approvers can select. |
|
Outputs
This pipeline has no outputs.
Tags
category = Compliance
folder = Internal
mod = aws
service = AWS/IAM