edit-icon download-icon

SetSecurityPreference

Last Updated: Mar 18, 2018

Interface description

Set global security preferences

Request parameters

Action

  • Type: String
  • Required: Yes
  • Description: Operation interface. System required parameter. Value: SetSecurityPreference.

EnableSaveMFATicket

  • Type: Boolean
  • Required: No
  • Description: Whether to allow users to save the MFA authentication ticket at logon. The ticket validity period is currently seven days.

AllowUserToChangePassword

  • Type: Boolean
  • Required: false
  • Default: true
  • Description: Whether to allow users to modify their own passwords

AllowUserToManageAccessKeys

  • Type: Boolean
  • Required: false
  • Default: false
  • Description: whether to allow users to manage their own AccessKeys

AllowUserToManageMFADevices

  • Type: Boolean
  • Required: false
  • Default: true
  • Description: whether to allow users to bind or unbind their own MFA devices

Response parameter

SecurityPreference

Required permissions

Action

ram:SetSecurityPreference

Resource

acs:ram:*:${AccountId}:*

Operation example

Request example

  1. https://ram.aliyuncs.com/?Action=SetSecurityPreference
  2. &EnableSaveMFATicket=true
  3. &AllowUserToChangePassword=true
  4. &AllowUserToManageAccessKeys=false
  5. &<Common Request Parameter>

Response example

XML format

  1. <SetSecurityPreferenceResponse>
  2. <RequestId>04F0F334-1335-436C-A1D7-6C044FE73368</RequestId>
  3. <SecurityPreference>
  4. <LoginProfilePreference>
  5. <EnableSaveMFATicket>true</EnableSaveMFATicket>
  6. <AllowUserToChangePassword>true</AllowUserToChangePassword>
  7. </LoginProfilePreference>LoginProfilePreference>
  8. <AccessKeyPreference>
  9. <AllowUserToManageAccessKeys>false</AllowUserToManageAccessKeys>
  10. </AccessKeyPreference>
  11. <MFAPreference>
  12. <AllowUserToManageMFADevices>false</AllowUserToManageMFADevices>
  13. </MFAPreference>
  14. </SecurityPreference>
  15. </SetSecurityPreferenceResponse>

JSON format

  1. {
  2. "RequestId": "04F0F334-1335-436C-A1D7-6C044FE73368",
  3. "SecurityPreference": {
  4. "LoginProfilePreference": {
  5. "EnableSaveMFATicket": true,
  6. "AllowUserToChangePassword": true
  7. },
  8. "AccessKeyPreference": {
  9. "AllowUserToManageAccessKeys": false
  10. },
  11. "MFAPreference": {
  12. "AllowUserToManageMFADevices": true
  13. }
  14. }
  15. }
Thank you! We've received your feedback.