import boto3
client=boto3.client('iam')
sns=boto3.client('sns')
response = client.list_users()
userVirtualMfa = client.list_virtual_mfa_devices()
physicalString = ''
def lambda_handler(event,context):
mfa_users=[]
for user in response['Users']:
userMfa = client.list_mfa_devices(UserName=user['UserName'])
for uname in userMfa['MFADevices']:
virtualEnabled = []
virtualEnabled.append(uname['UserName'])
if len(userMfa['MFADevices']) == 0 :
if user['UserName'] not in virtualEnabled:
mfa_users.append(user['UserName'])
print (mfa_users)
import boto3
client = boto3.client('iam')
iam_users = []
response = client.list_users()
for user in response['Users']:
iam_users.append(user['UserName'])
while 'Marker' in response:
response = client.list_users(Marker=response['Marker'])
for user in response['Users']:
iam_users.append(user['UserName'])
no_mfa_users = []
for iam_user in iam_users:
response = client.list_mfa_devices(UserName=iam_user)
if not response['MFADevices']:
no_mfa_users.append(iam_user)
激活的lambda函数不能帮助用户定义这个函数。我还添加了SNS主题到函数,它将向您发送列表到已定义的主题。在
试试这个:
no_mfa_users
数组将包含未启用MFA的IAM用户列表。在boto3引用可以找到here。在
相关问题 更多 >
编程相关推荐