Open
Description
Use Case - Is your feature request related to a problem? Please describe.
Restrict creation of any new IAM users access keys to prohibit bypass of SSO and other controls
Expected Outcome - Describe the solution you'd like
An SCP which restricts IAM accesskey and user creation explicitly
Describe alternatives you've considered
This may be beneficial to combine with preventing other sensitive IAM actions, but is worthwhile to have this separately to control just access key and new user creation.
Affected AWS resource
IAM
Impact
Low: Niche use case which is particularly affecting the AWS resources if it is configured in a certain way
Supported material
N/A
I can contribute: Yes/No
Yes
Additional context
N/A
Pull Request number
#43
Metadata
Metadata
Assignees
Labels
No labels