A Config rule that checks whether IAM users are members of at least one IAM group.

 
Items
1
Size
0.5 KB
AWSTemplateFormatVersion: '2010-09-09'
Resources:
  ConfigRule:
    Type: 'AWS::Config::ConfigRule'
    Properties:
      ConfigRuleName: iam-user-group-membership-check
      Description: >-
        A Config rule that checks whether IAM users are members of at least one
        IAM group.
      InputParameters: {}
      Scope:
        ComplianceResourceTypes:
          - 'AWS::IAM::User'
      Source:
        Owner: AWS
        SourceIdentifier: IAM_USER_GROUP_MEMBERSHIP_CHECK
Parameters: {}
Metadata: {}
Conditions: {}

Customize Cf Template

Rule Parameters

 
* Required field