alicloud_accountalicloud_action_trailalicloud_cas_certificatealicloud_cms_monitor_hostalicloud_cs_kubernetes_clusteralicloud_cs_kubernetes_cluster_nodealicloud_ecs_auto_provisioning_groupalicloud_ecs_autoscaling_groupalicloud_ecs_diskalicloud_ecs_disk_metric_read_iopsalicloud_ecs_disk_metric_read_iops_dailyalicloud_ecs_disk_metric_read_iops_hourlyalicloud_ecs_disk_metric_write_iopsalicloud_ecs_disk_metric_write_iops_dailyalicloud_ecs_disk_metric_write_iops_hourlyalicloud_ecs_imagealicloud_ecs_instancealicloud_ecs_instance_metric_cpu_utilization_dailyalicloud_ecs_instance_metric_cpu_utilization_hourlyalicloud_ecs_key_pairalicloud_ecs_launch_templatealicloud_ecs_network_interfacealicloud_ecs_regionalicloud_ecs_security_groupalicloud_ecs_snapshotalicloud_ecs_zonealicloud_kms_keyalicloud_kms_secretalicloud_oss_bucketalicloud_ram_access_keyalicloud_ram_credential_reportalicloud_ram_groupalicloud_ram_password_policyalicloud_ram_policyalicloud_ram_rolealicloud_ram_security_preferencealicloud_ram_useralicloud_rds_backupalicloud_rds_databasealicloud_rds_instancealicloud_rds_instance_metric_connectionsalicloud_rds_instance_metric_connections_dailyalicloud_rds_instance_metric_cpu_utilizationalicloud_rds_instance_metric_cpu_utilization_dailyalicloud_rds_instance_metric_cpu_utilization_hourlyalicloud_security_center_field_statisticsalicloud_security_center_versionalicloud_slb_load_balanceralicloud_vpcalicloud_vpc_dhcp_options_setalicloud_vpc_eipalicloud_vpc_flow_logalicloud_vpc_nat_gatewayalicloud_vpc_network_aclalicloud_vpc_route_entryalicloud_vpc_route_tablealicloud_vpc_ssl_vpn_client_certalicloud_vpc_ssl_vpn_serveralicloud_vpc_vpn_connectionalicloud_vpc_vpn_customer_gatewayalicloud_vpc_vpn_gatewayalicloud_vpc_vswitch
Table: alicloud_ram_password_policy
RAM password policies can be used to ensure password complexity. It is recommendedvthat the password policy require at least one uppercase letter.
Examples
Ensure RAM password policy requires at least one uppercase letter (CIS v1.1.7)
select require_uppercase_characters, case require_uppercase_characters when true then 'pass' else 'fail' end as statusfrom alicloud_ram_password_policy;
Ensure RAM password policy requires at least one lowercase letter (CIS v1.1.8)
select require_lowercase_characters, case require_lowercase_characters when true then 'pass' else 'fail' end as statusfrom alicloud_ram_password_policy;
Ensure RAM password policy requires at least one symbol (CIS v1.1.9)
select require_symbols, case require_symbols when true then 'pass' else 'fail' end as statusfrom alicloud_ram_password_policy;
Ensure RAM password policy require at least one number (CIS v1.1.10)
select require_numbers, case require_numbers when true then 'pass' else 'fail' end as statusfrom alicloud_ram_password_policy;
Ensure RAM password policy requires minimum length of 14 or greater (CIS v1.1.11)
select minimum_password_length, case minimum_password_length >= 14 when true then 'pass' else 'fail' end as statusfrom alicloud_ram_password_policy;
.inspect alicloud_ram_password_policy
Alibaba Cloud RAM Password Policy
Name | Type | Description |
---|---|---|
_ctx | jsonb | Steampipe context in JSON form, e.g. connection_name. |
account_id | text | The Alicloud Account ID in which the resource is located. |
hard_expiry | boolean | Indicates whether the password has expired. |
max_login_attempts | bigint | The maximum number of permitted logon attempts within one hour. The number of logon attempts is reset to zero if a RAM user changes the password. |
max_password_age | bigint | The number of days for which a password is valid. Default value: 0. The default value indicates that the password never expires. |
minimum_password_length | bigint | The minimum required number of characters in a password. |
password_reuse_prevention | bigint | The number of previous passwords that the user is prevented from reusing. Default value: 0. The default value indicates that the RAM user is not prevented from reusing previous passwords. |
region | text | The Alicloud region in which the resource is located. |
require_lowercase_characters | boolean | Indicates whether a password must contain one or more lowercase letters. |
require_numbers | boolean | Indicates whether a password must contain one or more digits. |
require_symbols | boolean | Indicates whether a password must contain one or more special characters. |
require_uppercase_characters | boolean | Indicates whether a password must contain one or more uppercase letters. |