An access key was created by default during initial user setup

Details

This rule checks for adherence to Center for Internet Security (CIS) Recommendation 1.23, Do not setup access keys during initial user setup for all IAM users that have a console password. https://d0.awsstatic.com/whitepapers/compliance/AWS_CIS_Foundations_Benchmark.pdf#page=67

Tags: iam cis