In the RAM console, you can set the logon password requirements and security policies for all RAM users.

Set the account alias

Setting a RAM account alias for your account makes it easier for RAM users to remember the logon portal.

To maintain security of your account, the RAM user logon portal is different from the account logon portal. When logging on to the RAM console, RAM users must provide the RAM account alias of the account and their own user names and passwords.

  1. Log on to the RAM Console.
  2. Choose Identities > Settings > Advanced.
  3. In the Domain Management area, click Update.
  4. In the displayed dialog box, enter the account alias and click OK.

Set logon password requirements for RAM users

You can set the requirements for password strength for all RAM users. When users reset their passwords, the new passwords must conform to all password requirements.

Procedure

  1. Log on to the RAM Console.
  2. Choose Identities > Settings.
  3. On the Security Settings tab page, click Edit Password Rule in the Password Strength Settings area.
  4. In the displayed dialog box, set the password rules and click OK.

Set RAM user security policies

You can specify Multi-Factor Authentication (MFA) as a mandatory setting for RAM users. Once MFA is set, you can specify whether the MFA status can be stored on the logon device (for seven days). Additionally, you can specify whether users can manage their passwords, AccessKeys (AKs), and MFA devices.

  1. Log on to the RAM Console.
  2. Choose Identities > Settings.
  3. On the Security Settings tab page, click Update RAM user security settings in the RAM User Security area.
  4. In the displayed dialog box, set the security rules and click OK.