AWS Config Rule: IAM PASSWORD POLICY
IAM_PASSWORD_POLICY
Fernando Honig
Last Update 2 years ago
Description: Checks if the account password policy for IAM users meets the specified requirements indicated in the parameters. This rule is NON_COMPLIANT if the account password policy does not meet the specified requirements.
AWS Region: All supported AWS regions
Trigger type: Periodic
How to Resolve Manually
To resolve manually, create or change a custom password policy.
To create a custom password policy (console):
- Sign in to the AWS Management Console and open the IAM console at https://console.aws.amazon.com/iam/.
- In the navigation pane, choose Account settings.
- In the Password policy section, choose Change password policy.
- Select the options that you want to apply to your password policy and choose Save changes.
To change a custom password policy (console)
- Sign in to the AWS Management Console and open the IAM console at https://console.aws.amazon.com/iam/.
- In the navigation pane, choose Account settings.
- In the Password policy section, choose Change.
- Select the options that you want to apply to your password policy and choose Save changes.
How to Resolve with StackZone
You can resolve with StackZone by enabling the IAM Password Policy Remediation.
Go to Baseline Services -> Config Rules Global -> IAM -> Remediation and enable IAM Password Policy Remediation
Want to know more about StackZone and how to make your cloud management simple and secure?
Check our how it works section with easy to follow videos or just create your own StackZone Account here