AWS IAM Group
AWS IAM Group Fields
Guid
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
A unique identifier that is a combination of the GUID of the selected Scan and the AWS IAM Group's unique ID.
FSName
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
A special unique identifier that is a combination of the GroupName and the AWS Account ID.
Arn
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
Amazon Resource Name that uniquely identifies this IAM group across all of AWS.
AccountId
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
The AWS account ID that this IAM group belongs to.
Region
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
The AWS region associated with this IAM group.
OrganizationId
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
The AWS Organizations ID that this group's account belongs to.
GroupName
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
The friendly name that identifies the IAM group.
Path
TEXT
LIKE, NOT_LIKE, EQUAL, NOT_EQUAL, IS_EMPTY
The path to the group in the IAM hierarchy. Used to organize groups.
MemberCount
NUMBER
EQUAL, BETWEEN, SMALLER, LARGER, SMALLER_EQUAL, LARGER_EQUAL
The number of IAM users that are direct members of this group.
IsStealth
BOOLEAN
N/A
Indicates that the group can compromise admin objects with at least one attack path without being an explicit admin group.
AWSTier
NUMBER
EQUAL, BETWEEN, SMALLER, LARGER, SMALLER_EQUAL, LARGER_EQUAL
Privilege tier of the group based on the effective permissions granted by its attached policies.
CreateDate
DATE
SMALLER, LARGER, BETWEEN, EQUAL
The date and time when the IAM group was created.
ExposurePoint
NUMBER
EQUAL, BETWEEN, SMALLER, LARGER, SMALLER_EQUAL, LARGER_EQUAL
A numerical value indicating the level of exposure based on how many other entities can reach this group through attack paths.
risk
NUMBER
EQUAL, BETWEEN, SMALLER, LARGER, SMALLER_EQUAL, LARGER_EQUAL
The risk score of the group calculated based on vulnerability counts and severities.
Last updated
Was this helpful?