This n8n workflow automates the process of monitoring and reminding teams about AWS IAM access keys that are nearing or exceeding one year in age, ensuring security best practices are followed. It is designed to periodically review IAM users and their access keys, identify those that are inactive or older than 365 days, and send notifications via Slack for review.

The workflow begins with a weekly schedule trigger, prompting the process to run automatically on a predefined interval. It then retrieves all IAM users using AWS IAM credentials, followed by fetching each user’s access keys. The keys are filtered to exclude inactive ones, focusing only on active keys. Each key’s creation date is checked against a 365-day threshold to identify outdated keys. Notifications are sent to a designated Slack channel with details of the keys that need rotation. If no outdated keys are found, the workflow safely ends.

This setup helps DevOps, security teams, and AWS account owners maintain secure key rotation policies, prevent unauthorized access, and streamline compliance through automated alerts. Customizations such as changing the rotation period, deactivating old keys automatically, or integrating with ticketing systems are possible to tailor the workflow to specific security policies.