IAM misconfigurations

Root User Recently Used

Risk Level

Hazardous (3)

Platform(s)
Compliance Frameworks

Description

With the creation of an AWS account, a root user is created that cannot be disabled or deleted. That user has unrestricted access to and control over all resources in the AWS account. It is highly recommended that the use of this account be avoided for everyday tasks.
  • Recommended Mitigation

    Avoid the use of the root account for daily tasks, and instead delegate them to designated users