Root User AccessKey Check

ID: rule:aliyun:root-ak-check
Severity: high

Description

Ensures that the root account does not have active AccessKeys.

Reason for Violation

Using AccessKeys for the root account is a security risk. IAM roles or RAM user AccessKeys should be used instead.

Recommendation

Delete any AccessKeys associated with the root account and use RAM users or roles.

Resource Types

• ALIYUN::RAM::User