Excluding breakglass accounts from MFA check

[alalvi00]

AWS CAC Solution PR Template

Pull Request Type

• [x] New Feature
• [ ] Bugfix
• [ ] Documentation Update
• [ ] Other (Please specify)

Description

This feature excludes break glass accounts from users mfa check in guardrail 02.

A new parameter has been added in our stack which is used by the conformance pack and provided to guardrail 02 lambda function via event

Related Issue(s)

https://github.com/orgs/ssc-spc-ccoe-cei/projects/12?pane=issue&itemId=56314410

How Has This Been Tested?

I have tested this feature by re evaluating the conformance pack and checking the logs of guardrail 02

CloudFormation Linter Results

Include the output of the CloudFormation linter (if used).

Deployment Test Results

Provide details of any deployment tests you have conducted.

Screenshots (if appropriate)

Testing results (BG accounts not included in the check

Checklist:

• [x] My code follows the code style of this project.
• [x] I have updated any related documentation.
• [x] I have read the CONTRIBUTING document.
• [x] I have added tests to cover my changes.
• [x] All new and existing tests passed.
• [x] My changes generate no new warnings.
• [x] I have added comments to my code, particularly in hard-to-understand areas.
• [x] I have made corresponding changes to the documentation.
• [x] My changes require a change to the documentation.
• [x] I have updated the documentation accordingly.
• [x] I have checked that the final deliverable aligns with the CloudFormation best practices.

Additional Notes

Include any additional information that you think is important for reviewers.

[github-actions[bot]]

Here is the Trivy scan report: View Trivy Report

[alalvi00]

27