Checks/Aws/Test-AccessanalyzerEnabled.ps1
|
function Test-AccessanalyzerEnabled { <# .SYNOPSIS IAM Access Analyzer is enabled .DESCRIPTION **IAM Access Analyzer** presence and status are evaluated per account and Region. An analyzer in `ACTIVE` state indicates continuous analysis of supported resources and IAM activity to identify external, internal, and unused access. .PARAMETER Check CIEMCheck object containing check metadata. #> [CmdletBinding()] [OutputType([PSCustomObject[]])] param( [Parameter(Mandatory)] [CIEMCheck]$Check ) $ErrorActionPreference = 'Stop' # TODO: Implement check logic based on Prowler check: accessanalyzer_enabled [CIEMScanResult]::Create($Check, 'MANUAL', 'This check requires manual implementation. See Prowler check accessanalyzer_enabled for reference.', 'N/A', 'accessanalyzer Resources') } |