Back to All Checks
Critical IAM

IAM root user access key should not exist

CISHIPAA

Description

Checks if the IAM root user access key exists. The root user should not have an access key.

Remediation

To remove the IAM root user access key, follow these steps:

Steps

  1. Sign in to the AWS Management Console using your root user credentials.
  2. Navigate to the IAM dashboard at https://console.aws.amazon.com/iam/.
  3. In the navigation pane, click on 'Users'.
  4. Click on the root user account to view its details.
  5. In the 'Security credentials' tab, locate the 'Access keys' section.
  6. If an access key exists, click on 'Delete' next to the access key.
  7. Confirm the deletion to remove the access key.
  8. Consider creating an IAM user with necessary permissions and use it for daily administrative tasks instead of the root user.

Compliance

CISHIPAA
Start Your Free Security Check