From 0082efaa6a2e352fa0bd85cf86f4c75e9542939b Mon Sep 17 00:00:00 2001
From: Aidan Holsgrove <aidan@shopkeep.com>
Date: Wed, 25 May 2016 13:50:35 +0100
Subject: [PATCH] Ignoring non IAM domain users

---
 node/iam_mfa_require-triggered.js | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/node/iam_mfa_require-triggered.js b/node/iam_mfa_require-triggered.js
index 37a683b66..4c925c426 100755
--- a/node/iam_mfa_require-triggered.js
+++ b/node/iam_mfa_require-triggered.js
@@ -43,6 +43,8 @@ exports.handler = function(event, context) {
     // Only call out Async if a User
     if (configurationItem.resourceType === 'AWS::IAM::User') {
 	   
+     if (/(.*).com$/.test(configurationItem.resourceName)) {
+
         iam.listMFADevices({ UserName: configurationItem.resourceName }, function(mfaerr, mfadata) {
 
             var ret = 'NON_COMPLIANT';
@@ -80,7 +82,7 @@ exports.handler = function(event, context) {
             });
 
 	    });
-	   
+	  }
     } else {
  
 	    // Put together the request that reports the evaluation status