Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CKV2_AWS_52 Wrong/incomplete definition #7013

Open
fire2 opened this issue Feb 13, 2025 · 0 comments
Open

CKV2_AWS_52 Wrong/incomplete definition #7013

fire2 opened this issue Feb 13, 2025 · 0 comments
Labels
checks Check additions or changes

Comments

@fire2
Copy link

fire2 commented Feb 13, 2025
edited
Loading

Describe the issue
The check https://docs.prismacloud.io/en/enterprise-edition/policy-reference/aws-policies/aws-iam-policies/bc-aws-2-52 doesn't accept the following configuration as "fine-grained access control enabled":

advanced_security_options {
    enabled                        = true
    internal_user_database_enabled = false

    master_user_options {
        master_user_arn = var.cognito_authenticated_role
    }
}

Examples
See example above, this configuration should not fail the check. When applied, you can see fine-grained access control is enabled in the AWS Console:
Image

Version (please complete the following information):

Additional context
@fire2 fire2 added the checks Check additions or changes label Feb 13, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
checks Check additions or changes
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@fire2