Ensure a Custom Role is Assigned Permissions for Administering Resource Locks
There is no custom role to administer resource locks. Azure resource locks allow you to protect sensitive resources from accidental...
Blog
SSH Public Key Rotation (90 Days)
Rotating periodically the SSH keys assigned to your IAM users will significantly reduce the chances that a compromised set of...
AWS Secrets Manager secret with automatic rotation disabled
AWS Secrets Manager helps you to store and protect secrets needed to access your applications, services, and IT resources. Rotating...
AWS Secrets Manager secret was not used in the last 90 days
AWS Secrets Manager helps you to store and protect secrets needed to access your applications, services, and IT resources. We...
Weak Encryption Key
The following SSH Keys are defined with low level of encryption. This counfiguration might allow key cracking and compromise.
KMS encryption key rotation period is bigger than 90 days
Rotating kms keys regularly helps prevent brute-force attacks enabled by cryptanalysis and limits the number of actual messages vulnerable in...
App Service Authentication is off
By Enabling Authentication, every incoming HTTP request passes through it before being handled by the application code. It also handles...
Root User without MFA
The root account is the highest privileged user in the cloud account. Multi-Factor Authentication (MFA) adds another mechanism of authentication...
RDS database instance is using the default master username
An Amazon Relational Database Service (Amazon RDS) DB instance is an isolated database environment running in the cloud. The DB...