Devolutions.CIEM

0.3.28

Checks/Aws/Test-IamAvoidRootUsage.ps1

                                function Test-IamAvoidRootUsage {

    <#

    .SYNOPSIS

        AWS account root user has not been used in the last day

    .DESCRIPTION

        **AWS IAM root user** activity is assessed by inspecting `last-used` timestamps for the root password and access keys. The finding indicates when the root identity has been used recently for console or programmatic access.

    .PARAMETER Check

        CIEMCheck object containing check metadata.

    #>

    [CmdletBinding()]

    [OutputType([PSCustomObject[]])]

    param(

        [Parameter(Mandatory)]

        [CIEMCheck]$Check

    )

    $ErrorActionPreference = 'Stop'

    # TODO: Implement check logic based on Prowler check: iam_avoid_root_usage

    [CIEMScanResult]::Create($Check, 'MANUAL', 'This check requires manual implementation. See Prowler check iam_avoid_root_usage for reference.', 'N/A', 'iam Resources')

}