All Products
Search
Document Center

Cloud Config:cloudsso-scim-credential-expired-check

Last Updated:Jun 23, 2026

Evaluates whether a CloudSSO SCIM credential expires within the specified number of days (default: 90). A credential within the validity period is evaluated as Compliant.

Scenarios

Ensures that only authorized users can access the system, protecting user data and reducing security risks.

Risk level

Default risk level: high.

You can change the risk level based on your business requirements when you apply this rule.

Compliance evaluation logic

  • If the validity period of a CloudSSO SCIM credential is within the specified number of days, the evaluation result is Compliant. The default number of days is 90.

  • If the validity period of a CloudSSO SCIM credential is not within the specified number of days, the evaluation result is Non-compliant.

Rule details

Item

Description

Rule name

cloudsso-scim-credential-expired-check

Rule ID

cloudsso-scim-credential-expired-check

Tag

CloudSSO

Automatic remediation

Not supported

Trigger type

Periodic execution

Evaluation frequency

Every 24 hours

Supported resource type

CloudSSO SCIM credential

Input parameter

days. Default value: 90, in days

Non-compliance remediation

Ensure that the validity period of a CloudSSO SCIM credential is within the specified number of days. For more information, see Manage SCIM credentials.