From 02e57927fc5e4eccad4ab5c211426163bfc5d780 Mon Sep 17 00:00:00 2001
From: Acknosyn <8602276+acknosyn@users.noreply.github.com>
Date: Wed, 25 Jan 2023 22:29:04 +1300
Subject: [PATCH] fix(): IAM status messages switched fail and pass text and
 some grammar (#1756)

Co-authored-by: Francesco Badraun <francesco.badraun@zxsecurity.co.nz>
Co-authored-by: sergargar <sergio@verica.io>
Co-authored-by: n4ch04 <nachor1992@gmail.com>
---
 .../iam_disable_30_days_credentials.py        |  6 ++---
 .../iam_disable_45_days_credentials.py        |  6 ++---
 .../iam_disable_90_days_credentials.py        |  6 ++---
 .../iam_no_root_access_key.py                 |  4 +++-
 .../iam_password_policy_lowercase.py          |  8 +++----
 .../iam_password_policy_minimum_length_14.py  |  6 ++---
 .../iam_password_policy_number.py             |  4 ++--
 .../iam_password_policy_symbol.py             |  4 ++--
 .../iam_root_hardware_mfa_enabled.py          |  6 +++--
 .../iam_rotate_access_key_90_days.py          |  8 +++----
 .../iam_user_hardware_mfa_enabled.py          |  4 ++--
 .../iam_user_mfa_enabled_console_access.py    |  4 ++--
 .../iam_user_two_active_access_key.py         |  2 +-
 .../iam_disable_30_days_credentials_test.py   |  6 ++---
 .../iam_disable_45_days_credentials_test.py   |  6 ++---
 .../iam_disable_90_days_credentials_test.py   |  6 ++---
 .../iam_no_root_access_key_test.py            | 10 ++++++++-
 .../iam_password_policy_lowercase_test.py     | 15 +++++++++++++
 ..._password_policy_minimum_length_14_test.py | 22 +++++++++++++++++++
 .../iam_password_policy_number_test.py        | 15 +++++++++++++
 .../iam_password_policy_symbol_test.py        | 15 +++++++++++++
 .../iam_root_hardware_mfa_enabled_test.py     |  9 ++++++--
 .../iam_rotate_access_key_90_days_test.py     | 10 ++++++++-
 .../iam_user_hardware_mfa_enabled_test.py     | 12 +++++++---
 ...am_user_mfa_enabled_console_access_test.py |  4 ++--
 .../iam_user_two_active_access_key_test.py    | 14 ++++++++++--
 26 files changed, 160 insertions(+), 52 deletions(-)

diff --git a/prowler/providers/aws/services/iam/iam_disable_30_days_credentials/iam_disable_30_days_credentials.py b/prowler/providers/aws/services/iam/iam_disable_30_days_credentials/iam_disable_30_days_credentials.py
index 5da3dfc3..cbba935f 100644
--- a/prowler/providers/aws/services/iam/iam_disable_30_days_credentials/iam_disable_30_days_credentials.py
+++ b/prowler/providers/aws/services/iam/iam_disable_30_days_credentials/iam_disable_30_days_credentials.py
@@ -25,14 +25,14 @@ class iam_disable_30_days_credentials(Check):
                 )
                 if time_since_insertion.days > maximum_expiration_days:
                     report.status = "FAIL"
-                    report.status_extended = f"User {user.name} has not logged into the console in the past 30 days."
+                    report.status_extended = f"User {user.name} has not logged in to the console in the past 30 days."
                 else:
                     report.status = "PASS"
-                    report.status_extended = f"User {user.name} has logged into the console in the past 30 days."
+                    report.status_extended = f"User {user.name} has logged in to the console in the past 30 days."
             else:
                 report.status = "PASS"
                 report.status_extended = (
-                    f"User {user.name} has not a console password or is unused."
+                    f"User {user.name} does not have a console password or is unused."
                 )
 
             # Append report
diff --git a/prowler/providers/aws/services/iam/iam_disable_45_days_credentials/iam_disable_45_days_credentials.py b/prowler/providers/aws/services/iam/iam_disable_45_days_credentials/iam_disable_45_days_credentials.py
index e9592b1d..19a3b9e6 100644
--- a/prowler/providers/aws/services/iam/iam_disable_45_days_credentials/iam_disable_45_days_credentials.py
+++ b/prowler/providers/aws/services/iam/iam_disable_45_days_credentials/iam_disable_45_days_credentials.py
@@ -25,14 +25,14 @@ class iam_disable_45_days_credentials(Check):
                 )
                 if time_since_insertion.days > maximum_expiration_days:
                     report.status = "FAIL"
-                    report.status_extended = f"User {user.name} has not logged into the console in the past 45 days."
+                    report.status_extended = f"User {user.name} has not logged in to the console in the past 45 days."
                 else:
                     report.status = "PASS"
-                    report.status_extended = f"User {user.name} has logged into the console in the past 45 days."
+                    report.status_extended = f"User {user.name} has logged in to the console in the past 45 days."
             else:
                 report.status = "PASS"
                 report.status_extended = (
-                    f"User {user.name} has not a console password or is unused."
+                    f"User {user.name} does not have a console password or is unused."
                 )
 
             # Append report
diff --git a/prowler/providers/aws/services/iam/iam_disable_90_days_credentials/iam_disable_90_days_credentials.py b/prowler/providers/aws/services/iam/iam_disable_90_days_credentials/iam_disable_90_days_credentials.py
index 4b46ace5..42faf7b9 100644
--- a/prowler/providers/aws/services/iam/iam_disable_90_days_credentials/iam_disable_90_days_credentials.py
+++ b/prowler/providers/aws/services/iam/iam_disable_90_days_credentials/iam_disable_90_days_credentials.py
@@ -25,15 +25,15 @@ class iam_disable_90_days_credentials(Check):
                 )
                 if time_since_insertion.days > maximum_expiration_days:
                     report.status = "FAIL"
-                    report.status_extended = f"User {user.name} has not logged into the console in the past 90 days."
+                    report.status_extended = f"User {user.name} has not logged in to the console in the past 90 days."
                 else:
                     report.status = "PASS"
-                    report.status_extended = f"User {user.name} has logged into the console in the past 90 days."
+                    report.status_extended = f"User {user.name} has logged in to the console in the past 90 days."
             else:
                 report.status = "PASS"
 
                 report.status_extended = (
-                    f"User {user.name} has not a console password or is unused."
+                    f"User {user.name} does not have a console password or is unused."
                 )
             # Append report
             findings.append(report)
diff --git a/prowler/providers/aws/services/iam/iam_no_root_access_key/iam_no_root_access_key.py b/prowler/providers/aws/services/iam/iam_no_root_access_key/iam_no_root_access_key.py
index 2f9ce66c..3ff60c42 100644
--- a/prowler/providers/aws/services/iam/iam_no_root_access_key/iam_no_root_access_key.py
+++ b/prowler/providers/aws/services/iam/iam_no_root_access_key/iam_no_root_access_key.py
@@ -18,7 +18,9 @@ class iam_no_root_access_key(Check):
                     and user["access_key_2_active"] == "false"
                 ):
                     report.status = "PASS"
-                    report.status_extended = f"User {user['user']} has not access keys."
+                    report.status_extended = (
+                        f"User {user['user']} does not have access keys."
+                    )
                 elif (
                     user["access_key_1_active"] == "true"
                     and user["access_key_2_active"] == "true"
diff --git a/prowler/providers/aws/services/iam/iam_password_policy_lowercase/iam_password_policy_lowercase.py b/prowler/providers/aws/services/iam/iam_password_policy_lowercase/iam_password_policy_lowercase.py
index 18f1f9a4..0b37d3e3 100644
--- a/prowler/providers/aws/services/iam/iam_password_policy_lowercase/iam_password_policy_lowercase.py
+++ b/prowler/providers/aws/services/iam/iam_password_policy_lowercase/iam_password_policy_lowercase.py
@@ -13,12 +13,12 @@ class iam_password_policy_lowercase(Check):
             # Check if lowercase flag is set
             if iam_client.password_policy.lowercase:
                 report.status = "PASS"
-                report.status_extended = "IAM password policy does not require at least one lowercase letter."
+                report.status_extended = (
+                    "IAM password policy requires at least one lowercase letter."
+                )
             else:
                 report.status = "FAIL"
-                report.status_extended = (
-                    "IAM password policy require at least one lowercase letter."
-                )
+                report.status_extended = "IAM password policy does not require at least one lowercase letter."
         else:
             report.status = "FAIL"
             report.status_extended = "Password policy cannot be found"
diff --git a/prowler/providers/aws/services/iam/iam_password_policy_minimum_length_14/iam_password_policy_minimum_length_14.py b/prowler/providers/aws/services/iam/iam_password_policy_minimum_length_14/iam_password_policy_minimum_length_14.py
index 7902090c..d234515c 100644
--- a/prowler/providers/aws/services/iam/iam_password_policy_minimum_length_14/iam_password_policy_minimum_length_14.py
+++ b/prowler/providers/aws/services/iam/iam_password_policy_minimum_length_14/iam_password_policy_minimum_length_14.py
@@ -16,12 +16,12 @@ class iam_password_policy_minimum_length_14(Check):
                 and iam_client.password_policy.length >= 14
             ):
                 report.status = "PASS"
-                report.status_extended = "IAM password policy does not requires minimum length of 14 characters."
-            else:
-                report.status = "FAIL"
                 report.status_extended = (
                     "IAM password policy requires minimum length of 14 characters."
                 )
+            else:
+                report.status = "FAIL"
+                report.status_extended = "IAM password policy does not require minimum length of 14 characters."
         else:
             report.status = "FAIL"
             report.status_extended = "Password policy cannot be found"
diff --git a/prowler/providers/aws/services/iam/iam_password_policy_number/iam_password_policy_number.py b/prowler/providers/aws/services/iam/iam_password_policy_number/iam_password_policy_number.py
index dd4ddf4b..6f730ec6 100644
--- a/prowler/providers/aws/services/iam/iam_password_policy_number/iam_password_policy_number.py
+++ b/prowler/providers/aws/services/iam/iam_password_policy_number/iam_password_policy_number.py
@@ -14,12 +14,12 @@ class iam_password_policy_number(Check):
             if iam_client.password_policy.numbers:
                 report.status = "PASS"
                 report.status_extended = (
-                    "IAM password policy does not require at least one number"
+                    "IAM password policy requires at least one number."
                 )
             else:
                 report.status = "FAIL"
                 report.status_extended = (
-                    "IAM password policy require at least one number."
+                    "IAM password policy does not require at least one number."
                 )
         else:
             report.status = "FAIL"
diff --git a/prowler/providers/aws/services/iam/iam_password_policy_symbol/iam_password_policy_symbol.py b/prowler/providers/aws/services/iam/iam_password_policy_symbol/iam_password_policy_symbol.py
index a45d77a0..ebc8a2ba 100644
--- a/prowler/providers/aws/services/iam/iam_password_policy_symbol/iam_password_policy_symbol.py
+++ b/prowler/providers/aws/services/iam/iam_password_policy_symbol/iam_password_policy_symbol.py
@@ -14,12 +14,12 @@ class iam_password_policy_symbol(Check):
             if iam_client.password_policy.symbols:
                 report.status = "PASS"
                 report.status_extended = (
-                    "IAM password policy does not require at least one symbol."
+                    "IAM password policy requires at least one symbol."
                 )
             else:
                 report.status = "FAIL"
                 report.status_extended = (
-                    "IAM password policy requires at least one symbol."
+                    "IAM password policy does not require at least one symbol."
                 )
         else:
             report.status = "FAIL"
diff --git a/prowler/providers/aws/services/iam/iam_root_hardware_mfa_enabled/iam_root_hardware_mfa_enabled.py b/prowler/providers/aws/services/iam/iam_root_hardware_mfa_enabled/iam_root_hardware_mfa_enabled.py
index bd8d54e9..717cb5de 100644
--- a/prowler/providers/aws/services/iam/iam_root_hardware_mfa_enabled/iam_root_hardware_mfa_enabled.py
+++ b/prowler/providers/aws/services/iam/iam_root_hardware_mfa_enabled/iam_root_hardware_mfa_enabled.py
@@ -19,10 +19,12 @@ class iam_root_hardware_mfa_enabled(Check):
                     if "root" in mfa["SerialNumber"]:
                         virtual_mfa = True
                         report.status = "FAIL"
-                        report.status_extended = "Root account has a virtual MFA instead of a hardware MFA enabled."
+                        report.status_extended = "Root account has a virtual MFA instead of a hardware MFA device enabled."
                 if not virtual_mfa:
                     report.status = "PASS"
-                    report.status_extended = "Root account has hardware MFA enabled."
+                    report.status_extended = (
+                        "Root account has a hardware MFA device enabled."
+                    )
             else:
                 report.status = "FAIL"
                 report.status_extended = "MFA is not enabled for root account."
diff --git a/prowler/providers/aws/services/iam/iam_rotate_access_key_90_days/iam_rotate_access_key_90_days.py b/prowler/providers/aws/services/iam/iam_rotate_access_key_90_days/iam_rotate_access_key_90_days.py
index 3b1292f0..420b38cc 100644
--- a/prowler/providers/aws/services/iam/iam_rotate_access_key_90_days/iam_rotate_access_key_90_days.py
+++ b/prowler/providers/aws/services/iam/iam_rotate_access_key_90_days/iam_rotate_access_key_90_days.py
@@ -21,7 +21,9 @@ class iam_rotate_access_key_90_days(Check):
                 and user["access_key_2_last_rotated"] == "N/A"
             ):
                 report.status = "PASS"
-                report.status_extended = f"User {user['user']} has not access keys."
+                report.status_extended = (
+                    f"User {user['user']} does not have access keys."
+                )
             else:
                 old_access_keys = False
                 if user["access_key_1_last_rotated"] != "N/A":
@@ -50,9 +52,7 @@ class iam_rotate_access_key_90_days(Check):
                         report.status_extended = f"User {user['user']} has not rotated access key 2 in over 90 days ({access_key_2_last_rotated.days} days)."
                 if not old_access_keys:
                     report.status = "PASS"
-                    report.status_extended = (
-                        f"User {user['user']} has access keys not older than 90 days."
-                    )
+                    report.status_extended = f"User {user['user']} does not have access keys older than 90 days."
             findings.append(report)
 
         return findings
diff --git a/prowler/providers/aws/services/iam/iam_user_hardware_mfa_enabled/iam_user_hardware_mfa_enabled.py b/prowler/providers/aws/services/iam/iam_user_hardware_mfa_enabled/iam_user_hardware_mfa_enabled.py
index 8bfacf1b..94d03759 100644
--- a/prowler/providers/aws/services/iam/iam_user_hardware_mfa_enabled/iam_user_hardware_mfa_enabled.py
+++ b/prowler/providers/aws/services/iam/iam_user_hardware_mfa_enabled/iam_user_hardware_mfa_enabled.py
@@ -18,14 +18,14 @@ class iam_user_hardware_mfa_enabled(Check):
                 for mfa_device in user.mfa_devices:
                     if mfa_device.type == "mfa" or mfa_device.type == "sms-mfa":
                         report.status = "FAIL"
-                        report.status_extended = f"User {user.name} has a virtual MFA instead of a hardware MFA enabled."
+                        report.status_extended = f"User {user.name} has a virtual MFA instead of a hardware MFA device enabled."
                         break
 
                 findings.append(report)
             else:
                 report.status = "FAIL"
                 report.status_extended = (
-                    f"User {user.name} has not any type of MFA enabled."
+                    f"User {user.name} does not have any type of MFA enabled."
                 )
                 findings.append(report)
 
diff --git a/prowler/providers/aws/services/iam/iam_user_mfa_enabled_console_access/iam_user_mfa_enabled_console_access.py b/prowler/providers/aws/services/iam/iam_user_mfa_enabled_console_access/iam_user_mfa_enabled_console_access.py
index d12e08ba..0d5e42d7 100644
--- a/prowler/providers/aws/services/iam/iam_user_mfa_enabled_console_access/iam_user_mfa_enabled_console_access.py
+++ b/prowler/providers/aws/services/iam/iam_user_mfa_enabled_console_access/iam_user_mfa_enabled_console_access.py
@@ -24,13 +24,13 @@ class iam_user_mfa_enabled_console_access(Check):
                 else:
                     report.status = "PASS"
                     report.status_extended = (
-                        f"User {user['user']} has not Console Password enabled."
+                        f"User {user['user']} does not have Console Password enabled."
                     )
             # root user
             else:
                 report.status = "PASS"
                 report.status_extended = (
-                    f"User {user['user']} has not Console Password enabled."
+                    f"User {user['user']} does not have Console Password enabled."
                 )
             findings.append(report)
 
diff --git a/prowler/providers/aws/services/iam/iam_user_two_active_access_key/iam_user_two_active_access_key.py b/prowler/providers/aws/services/iam/iam_user_two_active_access_key/iam_user_two_active_access_key.py
index 00841829..93b66190 100644
--- a/prowler/providers/aws/services/iam/iam_user_two_active_access_key/iam_user_two_active_access_key.py
+++ b/prowler/providers/aws/services/iam/iam_user_two_active_access_key/iam_user_two_active_access_key.py
@@ -24,7 +24,7 @@ class iam_user_two_active_access_key(Check):
                 else:
                     report.status = "PASS"
                     report.status_extended = (
-                        f"User {user['user']} has not 2 active access keys."
+                        f"User {user['user']} does not have 2 active access keys."
                     )
                 findings.append(report)
         except Exception as error:
diff --git a/tests/providers/aws/services/iam/iam_disable_30_days_credentials/iam_disable_30_days_credentials_test.py b/tests/providers/aws/services/iam/iam_disable_30_days_credentials/iam_disable_30_days_credentials_test.py
index 76ecaeae..6897bfc9 100644
--- a/tests/providers/aws/services/iam/iam_disable_30_days_credentials/iam_disable_30_days_credentials_test.py
+++ b/tests/providers/aws/services/iam/iam_disable_30_days_credentials/iam_disable_30_days_credentials_test.py
@@ -33,7 +33,7 @@ class Test_iam_disable_30_days_credentials_test:
             result = check.execute()
             assert result[0].status == "PASS"
             assert search(
-                f"User {user} has logged into the console in the past 30 days.",
+                f"User {user} has logged in to the console in the past 30 days.",
                 result[0].status_extended,
             )
             assert result[0].resource_id == user
@@ -65,7 +65,7 @@ class Test_iam_disable_30_days_credentials_test:
             result = check.execute()
             assert result[0].status == "FAIL"
             assert search(
-                f"User {user} has not logged into the console in the past 30 days.",
+                f"User {user} has not logged in to the console in the past 30 days.",
                 result[0].status_extended,
             )
             assert result[0].resource_id == user
@@ -96,7 +96,7 @@ class Test_iam_disable_30_days_credentials_test:
             result = check.execute()
             assert result[0].status == "PASS"
             assert search(
-                f"User {user} has not a console password or is unused.",
+                f"User {user} does not have a console password or is unused.",
                 result[0].status_extended,
             )
             assert result[0].resource_id == user
diff --git a/tests/providers/aws/services/iam/iam_disable_45_days_credentials/iam_disable_45_days_credentials_test.py b/tests/providers/aws/services/iam/iam_disable_45_days_credentials/iam_disable_45_days_credentials_test.py
index 84c3ecf5..ee8c8e97 100644
--- a/tests/providers/aws/services/iam/iam_disable_45_days_credentials/iam_disable_45_days_credentials_test.py
+++ b/tests/providers/aws/services/iam/iam_disable_45_days_credentials/iam_disable_45_days_credentials_test.py
@@ -33,7 +33,7 @@ class Test_iam_disable_45_days_credentials_test:
             result = check.execute()
             assert result[0].status == "PASS"
             assert search(
-                f"User {user} has logged into the console in the past 45 days.",
+                f"User {user} has logged in to the console in the past 45 days.",
                 result[0].status_extended,
             )
             assert result[0].resource_id == user
@@ -65,7 +65,7 @@ class Test_iam_disable_45_days_credentials_test:
             result = check.execute()
             assert result[0].status == "FAIL"
             assert search(
-                f"User {user} has not logged into the console in the past 45 days.",
+                f"User {user} has not logged in to the console in the past 45 days.",
                 result[0].status_extended,
             )
             assert result[0].resource_id == user
@@ -95,7 +95,7 @@ class Test_iam_disable_45_days_credentials_test:
             result = check.execute()
             assert result[0].status == "PASS"
             assert search(
-                f"User {user} has not a console password or is unused.",
+                f"User {user} does not have a console password or is unused.",
                 result[0].status_extended,
             )
             assert result[0].resource_id == user
diff --git a/tests/providers/aws/services/iam/iam_disable_90_days_credentials/iam_disable_90_days_credentials_test.py b/tests/providers/aws/services/iam/iam_disable_90_days_credentials/iam_disable_90_days_credentials_test.py
index 99685baf..e5434796 100644
--- a/tests/providers/aws/services/iam/iam_disable_90_days_credentials/iam_disable_90_days_credentials_test.py
+++ b/tests/providers/aws/services/iam/iam_disable_90_days_credentials/iam_disable_90_days_credentials_test.py
@@ -33,7 +33,7 @@ class Test_iam_disable_90_days_credentials_test:
             result = check.execute()
             assert result[0].status == "PASS"
             assert search(
-                f"User {user} has logged into the console in the past 90 days.",
+                f"User {user} has logged in to the console in the past 90 days.",
                 result[0].status_extended,
             )
             assert result[0].resource_id == user
@@ -65,7 +65,7 @@ class Test_iam_disable_90_days_credentials_test:
             result = check.execute()
             assert result[0].status == "FAIL"
             assert search(
-                f"User {user} has not logged into the console in the past 90 days.",
+                f"User {user} has not logged in to the console in the past 90 days.",
                 result[0].status_extended,
             )
             assert result[0].resource_id == user
@@ -96,7 +96,7 @@ class Test_iam_disable_90_days_credentials_test:
             result = check.execute()
             assert result[0].status == "PASS"
             assert search(
-                f"User {user} has not a console password or is unused.",
+                f"User {user} does not have a console password or is unused.",
                 result[0].status_extended,
             )
             assert result[0].resource_id == user
diff --git a/tests/providers/aws/services/iam/iam_no_root_access_key/iam_no_root_access_key_test.py b/tests/providers/aws/services/iam/iam_no_root_access_key/iam_no_root_access_key_test.py
index e54f9175..52404ca4 100644
--- a/tests/providers/aws/services/iam/iam_no_root_access_key/iam_no_root_access_key_test.py
+++ b/tests/providers/aws/services/iam/iam_no_root_access_key/iam_no_root_access_key_test.py
@@ -15,6 +15,8 @@ class Test_iam_no_root_access_key_test:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_no_root_access_key.iam_no_root_access_key.iam_client",
             new=IAM(current_audit_info),
@@ -35,7 +37,7 @@ class Test_iam_no_root_access_key_test:
             # raise Exception
             assert result[0].status == "PASS"
             assert search(
-                "User <root_account> has not access keys.",
+                "User <root_account> does not have access keys.",
                 result[0].status_extended,
             )
             assert result[0].resource_id == "<root_account>"
@@ -53,6 +55,8 @@ class Test_iam_no_root_access_key_test:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_no_root_access_key.iam_no_root_access_key.iam_client",
             new=IAM(current_audit_info),
@@ -91,6 +95,8 @@ class Test_iam_no_root_access_key_test:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_no_root_access_key.iam_no_root_access_key.iam_client",
             new=IAM(current_audit_info),
@@ -129,6 +135,8 @@ class Test_iam_no_root_access_key_test:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_no_root_access_key.iam_no_root_access_key.iam_client",
             new=IAM(current_audit_info),
diff --git a/tests/providers/aws/services/iam/iam_password_policy_lowercase/iam_password_policy_lowercase_test.py b/tests/providers/aws/services/iam/iam_password_policy_lowercase/iam_password_policy_lowercase_test.py
index 61b86e39..c2e20347 100644
--- a/tests/providers/aws/services/iam/iam_password_policy_lowercase/iam_password_policy_lowercase_test.py
+++ b/tests/providers/aws/services/iam/iam_password_policy_lowercase/iam_password_policy_lowercase_test.py
@@ -1,3 +1,4 @@
+from re import search
 from unittest import mock
 
 from boto3 import client
@@ -14,6 +15,8 @@ class Test_iam_password_policy_lowercase:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_password_policy_lowercase.iam_password_policy_lowercase.iam_client",
             new=IAM(current_audit_info),
@@ -26,6 +29,11 @@ class Test_iam_password_policy_lowercase:
             check = iam_password_policy_lowercase()
             result = check.execute()
             assert result[0].status == "FAIL"
+            assert search(
+                "IAM password policy does not require at least one lowercase letter.",
+                result[0].status_extended,
+            )
+            assert result[0].resource_id == "password_policy"
 
     @mock_iam
     def test_iam_password_policy_lowercase_flag(self):
@@ -36,6 +44,8 @@ class Test_iam_password_policy_lowercase:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_password_policy_lowercase.iam_password_policy_lowercase.iam_client",
             new=IAM(current_audit_info),
@@ -48,3 +58,8 @@ class Test_iam_password_policy_lowercase:
             check = iam_password_policy_lowercase()
             result = check.execute()
             assert result[0].status == "PASS"
+            assert search(
+                "IAM password policy requires at least one lowercase letter.",
+                result[0].status_extended,
+            )
+            assert result[0].resource_id == "password_policy"
diff --git a/tests/providers/aws/services/iam/iam_password_policy_minimum_length_14/iam_password_policy_minimum_length_14_test.py b/tests/providers/aws/services/iam/iam_password_policy_minimum_length_14/iam_password_policy_minimum_length_14_test.py
index d145e6b1..dba8936b 100644
--- a/tests/providers/aws/services/iam/iam_password_policy_minimum_length_14/iam_password_policy_minimum_length_14_test.py
+++ b/tests/providers/aws/services/iam/iam_password_policy_minimum_length_14/iam_password_policy_minimum_length_14_test.py
@@ -1,3 +1,4 @@
+from re import search
 from unittest import mock
 
 from boto3 import client
@@ -14,6 +15,8 @@ class Test_iam_password_policy_minimum_length_14:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_password_policy_minimum_length_14.iam_password_policy_minimum_length_14.iam_client",
             new=IAM(current_audit_info),
@@ -26,6 +29,11 @@ class Test_iam_password_policy_minimum_length_14:
             check = iam_password_policy_minimum_length_14()
             result = check.execute()
             assert result[0].status == "PASS"
+            assert search(
+                "IAM password policy requires minimum length of 14 characters.",
+                result[0].status_extended,
+            )
+            assert result[0].resource_id == "password_policy"
 
     @mock_iam
     def test_iam_password_policy_minimum_length_greater_14(self):
@@ -36,6 +44,8 @@ class Test_iam_password_policy_minimum_length_14:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_password_policy_minimum_length_14.iam_password_policy_minimum_length_14.iam_client",
             new=IAM(current_audit_info),
@@ -48,6 +58,11 @@ class Test_iam_password_policy_minimum_length_14:
             check = iam_password_policy_minimum_length_14()
             result = check.execute()
             assert result[0].status == "PASS"
+            assert search(
+                "IAM password policy requires minimum length of 14 characters.",
+                result[0].status_extended,
+            )
+            assert result[0].resource_id == "password_policy"
 
     @mock_iam
     def test_iam_password_policy_minimum_length_less_14(self):
@@ -58,6 +73,8 @@ class Test_iam_password_policy_minimum_length_14:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_password_policy_minimum_length_14.iam_password_policy_minimum_length_14.iam_client",
             new=IAM(current_audit_info),
@@ -70,3 +87,8 @@ class Test_iam_password_policy_minimum_length_14:
             check = iam_password_policy_minimum_length_14()
             result = check.execute()
             assert result[0].status == "FAIL"
+            assert search(
+                "IAM password policy does not require minimum length of 14 characters.",
+                result[0].status_extended,
+            )
+            assert result[0].resource_id == "password_policy"
diff --git a/tests/providers/aws/services/iam/iam_password_policy_number/iam_password_policy_number_test.py b/tests/providers/aws/services/iam/iam_password_policy_number/iam_password_policy_number_test.py
index 7a2580bd..63075389 100644
--- a/tests/providers/aws/services/iam/iam_password_policy_number/iam_password_policy_number_test.py
+++ b/tests/providers/aws/services/iam/iam_password_policy_number/iam_password_policy_number_test.py
@@ -1,3 +1,4 @@
+from re import search
 from unittest import mock
 
 from boto3 import client
@@ -14,6 +15,8 @@ class Test_iam_password_policy_number:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_password_policy_number.iam_password_policy_number.iam_client",
             new=IAM(current_audit_info),
@@ -26,6 +29,11 @@ class Test_iam_password_policy_number:
             check = iam_password_policy_number()
             result = check.execute()
             assert result[0].status == "FAIL"
+            assert search(
+                "IAM password policy does not require at least one number.",
+                result[0].status_extended,
+            )
+            assert result[0].resource_id == "password_policy"
 
     @mock_iam
     def test_iam_password_policy_number_flag(self):
@@ -36,6 +44,8 @@ class Test_iam_password_policy_number:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_password_policy_number.iam_password_policy_number.iam_client",
             new=IAM(current_audit_info),
@@ -48,3 +58,8 @@ class Test_iam_password_policy_number:
             check = iam_password_policy_number()
             result = check.execute()
             assert result[0].status == "PASS"
+            assert search(
+                "IAM password policy requires at least one number.",
+                result[0].status_extended,
+            )
+            assert result[0].resource_id == "password_policy"
diff --git a/tests/providers/aws/services/iam/iam_password_policy_symbol/iam_password_policy_symbol_test.py b/tests/providers/aws/services/iam/iam_password_policy_symbol/iam_password_policy_symbol_test.py
index ccabf270..a369a1e9 100644
--- a/tests/providers/aws/services/iam/iam_password_policy_symbol/iam_password_policy_symbol_test.py
+++ b/tests/providers/aws/services/iam/iam_password_policy_symbol/iam_password_policy_symbol_test.py
@@ -1,3 +1,4 @@
+from re import search
 from unittest import mock
 
 from boto3 import client
@@ -14,6 +15,8 @@ class Test_iam_password_policy_symbol:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_password_policy_symbol.iam_password_policy_symbol.iam_client",
             new=IAM(current_audit_info),
@@ -26,6 +29,11 @@ class Test_iam_password_policy_symbol:
             check = iam_password_policy_symbol()
             result = check.execute()
             assert result[0].status == "FAIL"
+            assert search(
+                "IAM password policy does not require at least one symbol.",
+                result[0].status_extended,
+            )
+            assert result[0].resource_id == "password_policy"
 
     @mock_iam
     def test_iam_password_policy_symbol_flag(self):
@@ -36,6 +44,8 @@ class Test_iam_password_policy_symbol:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_password_policy_symbol.iam_password_policy_symbol.iam_client",
             new=IAM(current_audit_info),
@@ -48,3 +58,8 @@ class Test_iam_password_policy_symbol:
             check = iam_password_policy_symbol()
             result = check.execute()
             assert result[0].status == "PASS"
+            assert search(
+                "IAM password policy requires at least one symbol.",
+                result[0].status_extended,
+            )
+            assert result[0].resource_id == "password_policy"
diff --git a/tests/providers/aws/services/iam/iam_root_hardware_mfa_enabled/iam_root_hardware_mfa_enabled_test.py b/tests/providers/aws/services/iam/iam_root_hardware_mfa_enabled/iam_root_hardware_mfa_enabled_test.py
index 8126f48f..6e169814 100644
--- a/tests/providers/aws/services/iam/iam_root_hardware_mfa_enabled/iam_root_hardware_mfa_enabled_test.py
+++ b/tests/providers/aws/services/iam/iam_root_hardware_mfa_enabled/iam_root_hardware_mfa_enabled_test.py
@@ -14,6 +14,8 @@ class Test_iam_root_hardware_mfa_enabled_test:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_root_hardware_mfa_enabled.iam_root_hardware_mfa_enabled.iam_client",
             new=IAM(current_audit_info),
@@ -29,7 +31,7 @@ class Test_iam_root_hardware_mfa_enabled_test:
             result = check.execute()
             assert result[0].status == "FAIL"
             assert search(
-                "Root account has a virtual MFA instead of a hardware MFA enabled.",
+                "Root account has a virtual MFA instead of a hardware MFA device enabled.",
                 result[0].status_extended,
             )
             assert result[0].resource_id == "root"
@@ -42,6 +44,8 @@ class Test_iam_root_hardware_mfa_enabled_test:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_root_hardware_mfa_enabled.iam_root_hardware_mfa_enabled.iam_client",
             new=IAM(current_audit_info),
@@ -57,7 +61,8 @@ class Test_iam_root_hardware_mfa_enabled_test:
             result = check.execute()
             assert result[0].status == "PASS"
             assert search(
-                "Root account has hardware MFA enabled.", result[0].status_extended
+                "Root account has a hardware MFA device enabled.",
+                result[0].status_extended,
             )
             assert result[0].resource_id == "root"
             assert (
diff --git a/tests/providers/aws/services/iam/iam_rotate_access_key_90_days/iam_rotate_access_key_90_days_test.py b/tests/providers/aws/services/iam/iam_rotate_access_key_90_days/iam_rotate_access_key_90_days_test.py
index e5169d12..eededd61 100644
--- a/tests/providers/aws/services/iam/iam_rotate_access_key_90_days/iam_rotate_access_key_90_days_test.py
+++ b/tests/providers/aws/services/iam/iam_rotate_access_key_90_days/iam_rotate_access_key_90_days_test.py
@@ -15,6 +15,8 @@ class Test_iam_rotate_access_key_90_days_test:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_rotate_access_key_90_days.iam_rotate_access_key_90_days.iam_client",
             new=IAM(current_audit_info),
@@ -29,7 +31,9 @@ class Test_iam_rotate_access_key_90_days_test:
             check = iam_rotate_access_key_90_days()
             result = check.execute()
             assert result[0].status == "PASS"
-            assert result[0].status_extended == f"User {user} has not access keys."
+            assert (
+                result[0].status_extended == f"User {user} does not have access keys."
+            )
             assert result[0].resource_id == user
             assert result[0].resource_arn == arn
 
@@ -45,6 +49,8 @@ class Test_iam_rotate_access_key_90_days_test:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_rotate_access_key_90_days.iam_rotate_access_key_90_days.iam_client",
             new=IAM(current_audit_info),
@@ -79,6 +85,8 @@ class Test_iam_rotate_access_key_90_days_test:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_rotate_access_key_90_days.iam_rotate_access_key_90_days.iam_client",
             new=IAM(current_audit_info),
diff --git a/tests/providers/aws/services/iam/iam_user_hardware_mfa_enabled/iam_user_hardware_mfa_enabled_test.py b/tests/providers/aws/services/iam/iam_user_hardware_mfa_enabled/iam_user_hardware_mfa_enabled_test.py
index 6c95dedc..c76cb913 100644
--- a/tests/providers/aws/services/iam/iam_user_hardware_mfa_enabled/iam_user_hardware_mfa_enabled_test.py
+++ b/tests/providers/aws/services/iam/iam_user_hardware_mfa_enabled/iam_user_hardware_mfa_enabled_test.py
@@ -14,6 +14,8 @@ class Test_iam_user_hardware_mfa_enabled_test:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_user_hardware_mfa_enabled.iam_user_hardware_mfa_enabled.iam_client",
             new=IAM(current_audit_info),
@@ -28,7 +30,7 @@ class Test_iam_user_hardware_mfa_enabled_test:
 
             assert result[0].status == "FAIL"
             assert search(
-                f"User {user} has not any type of MFA enabled.",
+                f"User {user} does not have any type of MFA enabled.",
                 result[0].status_extended,
             )
             assert result[0].resource_id == user
@@ -42,6 +44,8 @@ class Test_iam_user_hardware_mfa_enabled_test:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM, MFADevice
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_user_hardware_mfa_enabled.iam_user_hardware_mfa_enabled.iam_client",
             new=IAM(current_audit_info),
@@ -62,7 +66,7 @@ class Test_iam_user_hardware_mfa_enabled_test:
             assert len(result) == 1
             assert result[0].status == "FAIL"
             assert search(
-                f"User {user} has a virtual MFA instead of a hardware MFA enabled.",
+                f"User {user} has a virtual MFA instead of a hardware MFA device enabled.",
                 result[0].status_extended,
             )
             assert result[0].resource_id == user
@@ -76,6 +80,8 @@ class Test_iam_user_hardware_mfa_enabled_test:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM, MFADevice
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_user_hardware_mfa_enabled.iam_user_hardware_mfa_enabled.iam_client",
             new=IAM(current_audit_info),
@@ -96,7 +102,7 @@ class Test_iam_user_hardware_mfa_enabled_test:
             assert len(result) == 1
             assert result[0].status == "FAIL"
             assert search(
-                f"User {user} has a virtual MFA instead of a hardware MFA enabled.",
+                f"User {user} has a virtual MFA instead of a hardware MFA device enabled.",
                 result[0].status_extended,
             )
             assert result[0].resource_id == user
diff --git a/tests/providers/aws/services/iam/iam_user_mfa_enabled_console_access/iam_user_mfa_enabled_console_access_test.py b/tests/providers/aws/services/iam/iam_user_mfa_enabled_console_access/iam_user_mfa_enabled_console_access_test.py
index f084dbc7..4380375b 100644
--- a/tests/providers/aws/services/iam/iam_user_mfa_enabled_console_access/iam_user_mfa_enabled_console_access_test.py
+++ b/tests/providers/aws/services/iam/iam_user_mfa_enabled_console_access/iam_user_mfa_enabled_console_access_test.py
@@ -31,7 +31,7 @@ class Test_iam_user_mfa_enabled_console_access_test:
             assert result[0].status == "PASS"
             assert (
                 result[0].status_extended
-                == f"User {user} has not Console Password enabled."
+                == f"User {user} does not have Console Password enabled."
             )
             assert result[0].resource_id == user
             assert result[0].resource_arn == arn
@@ -62,7 +62,7 @@ class Test_iam_user_mfa_enabled_console_access_test:
             assert result[0].status == "PASS"
             assert (
                 result[0].status_extended
-                == f"User {user} has not Console Password enabled."
+                == f"User {user} does not have Console Password enabled."
             )
             assert result[0].resource_id == user
             assert result[0].resource_arn == arn
diff --git a/tests/providers/aws/services/iam/iam_user_two_active_access_key/iam_user_two_active_access_key_test.py b/tests/providers/aws/services/iam/iam_user_two_active_access_key/iam_user_two_active_access_key_test.py
index 1cb8fa5e..389408b4 100644
--- a/tests/providers/aws/services/iam/iam_user_two_active_access_key/iam_user_two_active_access_key_test.py
+++ b/tests/providers/aws/services/iam/iam_user_two_active_access_key/iam_user_two_active_access_key_test.py
@@ -20,6 +20,8 @@ class Test_iam_user_two_active_access_key:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_user_two_active_access_key.iam_user_two_active_access_key.iam_client",
             new=IAM(current_audit_info),
@@ -52,6 +54,8 @@ class Test_iam_user_two_active_access_key:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_user_two_active_access_key.iam_user_two_active_access_key.iam_client",
             new=IAM(current_audit_info),
@@ -69,7 +73,8 @@ class Test_iam_user_two_active_access_key:
             assert result[0].resource_id == user
             assert result[0].resource_arn == user_arn
             assert search(
-                f"User {user} has not 2 active access keys.", result[0].status_extended
+                f"User {user} does not have 2 active access keys.",
+                result[0].status_extended,
             )
 
     @mock_iam
@@ -82,6 +87,8 @@ class Test_iam_user_two_active_access_key:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_user_two_active_access_key.iam_user_two_active_access_key.iam_client",
             new=IAM(current_audit_info),
@@ -99,7 +106,8 @@ class Test_iam_user_two_active_access_key:
             assert result[0].resource_id == user
             assert result[0].resource_arn == user_arn
             assert search(
-                f"User {user} has not 2 active access keys.", result[0].status_extended
+                f"User {user} does not have 2 active access keys.",
+                result[0].status_extended,
             )
 
     @mock_iam
@@ -107,6 +115,8 @@ class Test_iam_user_two_active_access_key:
         from prowler.providers.aws.lib.audit_info.audit_info import current_audit_info
         from prowler.providers.aws.services.iam.iam_service import IAM
 
+        current_audit_info.audited_partition = "aws"
+
         with mock.patch(
             "prowler.providers.aws.services.iam.iam_user_two_active_access_key.iam_user_two_active_access_key.iam_client",
             new=IAM(current_audit_info),