Evaluates whether a CloudSSO SCIM credential expires within the specified number of days (default: 90). A credential within the validity period is evaluated as Compliant.
Scenarios
Ensures that only authorized users can access the system, protecting user data and reducing security risks.
Risk level
Default risk level: high.
You can change the risk level based on your business requirements when you apply this rule.
Compliance evaluation logic
-
If the validity period of a CloudSSO SCIM credential is within the specified number of days, the evaluation result is Compliant. The default number of days is 90.
-
If the validity period of a CloudSSO SCIM credential is not within the specified number of days, the evaluation result is Non-compliant.
Rule details
|
Item |
Description |
|
Rule name |
cloudsso-scim-credential-expired-check |
|
Rule ID |
|
|
Tag |
CloudSSO |
|
Automatic remediation |
Not supported |
|
Trigger type |
Periodic execution |
|
Evaluation frequency |
Every 24 hours |
|
Supported resource type |
CloudSSO SCIM credential |
|
Input parameter |
days. Default value: 90, in days |
Non-compliance remediation
Ensure that the validity period of a CloudSSO SCIM credential is within the specified number of days. For more information, see Manage SCIM credentials.