Service Upgrade

[Alibaba Cloud] [RAM users who have not logged in for a long time will automatically disable console login]

Release Date: From September 20, 2024, UTC+8

Release content: Alibaba Cloud is committed to improving the security of cloud services and spares no effort in safeguarding user accounts and assets. Improper credential keeping can result in the leaks of logon passwords of Resource Access Management (RAM) users, which may in turn compromise resource security, incur unexpected fees, and even subject users to ransomware attacks. RAM console users who remain inactive for extended periods are at an increased risk of password leakage. The longer the period of inactivity, the greater the risk of exposure. Therefore, from September 20, 2024, Alibaba Cloud will automatically disable idle RAM users who have not logged in for more than 2 years.

Disable object:
● A RAM User created two years (730 days) ago, who has enabled the console password logon but has never logged on, and has not updated the logon settings in the last seven days.
● RAM users who enable console password logon, and whose last login time was 2 years (730 days) ago, and who have not updated their logon settings in the last 7 days.
Disable method: For RAM users who meet the above conditions, the system will automatically set the [Console Password Logon] configuration item of their [Logon Settings] to "Disabled".

Release Schedule:
● RAM users who meet the above conditions at AM 00:00 on September 20, 2024,UTC+8, will be disabled in batches over multiple days starting from that date.
● Ram users who meet the above conditions added daily after September 21, 2024, UTC+8, will be automatically disabled at 2:00 AM the following day.
Before September 20, 2024, RAM users who meet the above conditions but still need to log in to the console should log in and change their passwords to prevent automatic disabling. And keep users logged in regularly to avoid long-term inactivity. After September 20, 2024, if automatically disabled RAM users need to log in, the administrator can re-enable Console Password Logon, and the user is required to complete a login within 7 days.
If you have any questions or need further assistance, feel free to submit a ticket or call our hotline for technical support. Thank you for your understanding and trust.