Knowledge Base Community Release Notes Training Videos Request Demo

Knowledge Base Community Release Notes Training Videos Request Demo

Overview
Quick Start
- Onboarding Guide
Data Sources & Transports
Detections
Cloud Security Scanning
- Cloud Resource Attributes
  AWS
  ACM Certificate
  CloudFormation Stack
  CloudWatch Log Group
  CloudTrail
  CloudTrail Meta
  Config Recorder
  Config Recorder Meta
  DynamoDB Table
  EC2 AMI
  EC2 Instance
  EC2 Network ACL
  EC2 SecurityGroup
  EC2 Volume
  EC2 VPC
  ECS Cluster
  EKS Cluster
  ELBV2 Application Load Balancer
  GuardDuty Detector
  GuardDuty Detector Meta
  IAM Group
  IAM Policy
  IAM Role
  IAM Root User
  IAM User
  KMS Key
  Lambda Function
  Password Policy
  RDS Instance
  Redshift Cluster
  Route 53 Domains
  Route 53 Hosted Zone
  S3 Bucket
  WAF Web ACL
Alerts & Destinations
Investigations & Search
PantherFlow
Enrichment
System Configuration
Panther Developer Workflows
Resources
- Help
- Panther System Architecture

Powered by GitBook

On this page

Was this helpful?

AWS IAM Group Has Users

PreviousAWS GuardDuty Is Enabled NextAWS IAM Policy Blocklist Is Respected

Last updated 3 years ago

This policy validates that every IAM Group has at least one IAM user in it. Unused groups increase management complexity and attack surface, and should be deleted.

Remediation

To remediate this, delete any IAM groups that do not have any users in them. Alternatively, add appropriate users to the groups.

Reference

AWS Deleting IAM Groups documentation

Risk

Remediation Effort

Low

Low