Mods

turbot/alicloud_compliance

GitHub
Overview
1Dashboards
78Controls
40Queries
2Variables
GitHub
Loading controls...
On This Page
Description
Remediation
Usage
SQL
Tags
Get Involved
Edit on GitHub
Discuss on Slack

Control: 1.12 Ensure RAM password policy prevents password reuse

Description

It is recommended that the password policy prevent the reuse of passwords.

Remediation

Perform the following to set the password policy as expected:

From Console

  1. Logon to RAM console.
  2. Choose Identities > Settings.
  3. In the Password Strength Settings section, click Edit Password Rule.
  4. In the Password History Check Policy field, enter 5.
  5. Click OK.

From Command Line

aliyun ram SetPasswordPolicy --PasswordReusePrevention 5

Usage

Run the control in your terminal:

steampipe check alicloud_compliance.control.cis_v100_1_12

Snapshot and share results via Steampipe Cloud:

steampipe login
steampipe check --share alicloud_compliance.control.cis_v100_1_12

SQL

This control uses a named query:

ram_account_password_policy_reuse_5

Tags

category = Compliance
cis = true
cis_item_id = 1.12
cis_level = 1
cis_section_id = 1
cis_type = automated
cis_version = v1.0.0
plugin = alicloud
service = AliCloud/RAM