AWS Control Tower - Controls report false positive

We've recently noticed that the AWS Control Tower control: "Detect whether MFA is enabled for AWS IAM users of the AWS Console" is reporting a false positive result (NON_COMPLIANT) for a user that was deleted over a week ago.

One thing we have noticed is that the false positive result is being picked up in us-east-2 when normally IAM non-compliant is picked up in us-east-1 so I don't know whether this may be related to the incorrect results being displayed.

Has anyone experienced this issue before? How do we get it resolved as the results are misleading to user?

Note: We have tried re-evaluating the AWS Config for the control and redeploying the Controls and Landing Zone in case it was a configuration issue but it seems more related to a data issue being report from IAM.

Topics

Security, Identity, & Compliance Management & Governance

Relevant content

AWS control Tower setup failed
Giri
asked 2 months ago
AWS Control Tower - controls
Orlando
asked 7 months ago
aws control tower cost of configuration items
Vole Niagara
asked 2 years ago
Control Tower that the parent organizational unit is not enrolled in AWS Control Tower, when it is
McDoit
asked 2 years ago
What's the difference between an AWS Organizations service control policy and an IAM policy?
AWS OFFICIALUpdated 2 years ago
How do I detect false positives caused by AWS Managed Rules, and then add the rules to a safe list?
AWS OFFICIALUpdated a month ago
How do I gain access as an AWS account root user to the account created by Account Factory or Account Vending Machine in AWS Control Tower?
AWS OFFICIALUpdated 3 years ago
How can I require MFA authentication for IAM users that use the AWS CLI?
AWS OFFICIALUpdated 2 years ago
Amazon Managed Grafana now supports network access control
EXPERT
Mengdi Chen
published a year ago
Upgrade Control Tower Landing Zone From 2.x to 3.x
EXPERT
Tyler_P
published a month ago