Cloud Conformity Real-Time Threat Monitoring and Analysis (RTMA) engine has detected a call to IAM's 'CreateLoginProfile', within your AWS account.
This rule resolution is part of the Conformity Real-Time Threat Monitoring.
Security Amazon Identity and Access Management (IAM) is a web service that helps you securely control access to your AWS services and resources. With AWS IAM you can centrally manage users and groups, security credentials (i.e. access keys) and permissions that control which resources users and applications can access in your AWS account. Essentially, the IAM service is used to control who is authenticated (signed in) and authorized (has permissions) to use AWS cloud resources.
Cloud Conformity RTMA can detect any call to IAM's 'CreateLoginProfile' made within your AWS account. Specifically, the activity detected by the current RTMA rule could be any user (root/IAM) request initiated through AWS Management Console or any AWS API request initiated programmatically using AWS CLI or SDKs, that executes the Identity and Access Management (IAM) service action:
References
Unlock the Remediation Steps
Free 30-day Trial
Automatically audit your configurations with Conformity
and gain access to our cloud security platform.
You are auditing:
IAM CreateLoginProfile detected
Risk Level: High