AWS Config Rule: IAM PASSWORD POLICY

IAM_PASSWORD_POLICY

Fernando Honig

Last Update setahun yang lalu

Description: Checks if the account password policy for IAM users meets the specified requirements indicated in the parameters. This rule is NON_COMPLIANT if the account password policy does not meet the specified requirements.


AWS Region: All supported AWS regions


Trigger type: Periodic


How to Resolve Manually 

To resolve manually, create or change a custom password policy.


To create a custom password policy (console):


  1. Sign in to the AWS Management Console and open the IAM console at https://console.aws.amazon.com/iam/.
  2. In the navigation pane, choose Account settings.
  3. In the Password policy section, choose Change password policy.
  4. Select the options that you want to apply to your password policy and choose Save changes.


To change a custom password policy (console)


  1. Sign in to the AWS Management Console and open the IAM console at https://console.aws.amazon.com/iam/.
  2. In the navigation pane, choose Account settings.
  3. In the Password policy section, choose Change.
  4. Select the options that you want to apply to your password policy and choose Save changes.

How to Resolve with StackZone

You can resolve with StackZone by enabling the IAM Password Policy Remediation.


Go to Baseline Services -> Config Rules Global -> IAM -> Remediation and enable IAM Password Policy Remediation



Want to know more about StackZone and how to make your cloud management simple and secure?

Check our how it works section with easy to follow videos or just create your own StackZone Account here

Was this article helpful?

1 out of 1 liked this article

Still need help? Message Us