If the password complexity requirements in the RAM user password policy meet the specified parameter requirements, the account is considered compliant.
Scenarios
Setting password complexity requirements in the RAM user password policy helps prevent account intrusion and data breach risks that occur when simple passwords are cracked.
Risk level
Default risk level: high.
You can change the risk level as needed.
Detection logic
If the password complexity requirements in the RAM user password policy meet the specified parameter requirements, the account is considered compliant. By default, the password must contain uppercase letters, lowercase letters, numbers, and special characters.
Rule details
Parameter | Description |
Rule name | Password complexity requirements in RAM user password policy |
Rule identifier | |
Automatic remediation | Not supported |
Trigger frequency | Periodic: Every 24 hours |
Supported resource types | ACS::::Account |
Input parameters | requireSymbols (Default value: true) requireLowercaseCharacters (Default value: true) requireNumbers (Default value: true) requireUppercaseCharacters (Default value: true) |
Remediation guidance
For more information, see Configure a password policy for RAM users.