Skip to main content

UsersWithPasswordAndKeysEnabledStatCard

Users with Password and Keys Enabled

Overview

The "Users with Password and Keys Enabled" widget identifies IAM users who have both a password and access keys enabled. This combination of credentials can pose a security risk if users do not need both methods of authentication for accessing AWS resources.

Why It Matters

For IT Engineers:

  1. Credential Redundancy:
    • Helps identify users with unnecessary combinations of credentials, reducing the risk of exposure.
  2. Access Management:
    • Allows IT engineers to enforce least privilege access by ensuring users only have the credentials they need.
  3. Resource Optimization:
    • Streamlines user access management by identifying and potentially disabling redundant credentials.

For Security Engineers:

  1. Security Risk:
    • Having both password and access keys enabled increases the attack surface. This widget helps monitor and mitigate such risks.
  2. Access Control:
    • Ensures users are not over-permissioned, reducing the likelihood of credential misuse or compromise.
  3. Compliance:
    • Supports compliance with security policies by ensuring users' credentials are appropriately managed and follow best practices.