turbot/alicloud

steampipe plugin install alicloudsteampipe plugin install alicloud
On This Page
Get Involved

Table: alicloud_ram_password_policy

RAM password policies can be used to ensure password complexity. It is recommendedvthat the password policy require at least one uppercase letter.

Examples

Ensure RAM password policy requires at least one uppercase letter (CIS v1.1.7)

select
require_uppercase_characters,
case require_uppercase_characters
when true then 'pass'
else 'fail'
end as status
from
alicloud_ram_password_policy;

Ensure RAM password policy requires at least one lowercase letter (CIS v1.1.8)

select
require_lowercase_characters,
case require_lowercase_characters
when true then 'pass'
else 'fail'
end as status
from
alicloud_ram_password_policy;

Ensure RAM password policy requires at least one symbol (CIS v1.1.9)

select
require_symbols,
case require_symbols
when true then 'pass'
else 'fail'
end as status
from
alicloud_ram_password_policy;

Ensure RAM password policy require at least one number (CIS v1.1.10)

select
require_numbers,
case require_numbers
when true then 'pass'
else 'fail'
end as status
from
alicloud_ram_password_policy;

Ensure RAM password policy requires minimum length of 14 or greater (CIS v1.1.11)

select
minimum_password_length,
case minimum_password_length >= 14
when true then 'pass'
else 'fail'
end as status
from
alicloud_ram_password_policy;

.inspect alicloud_ram_password_policy

Alibaba Cloud RAM Password Policy

NameTypeDescription
account_idtextThe Alicloud Account ID in which the resource is located.
hard_expirybooleanIndicates whether the password has expired.
max_login_attemptsbigintThe maximum number of permitted logon attempts within one hour. The number of logon attempts is reset to zero if a RAM user changes the password.
max_password_agebigintThe number of days for which a password is valid. Default value: 0. The default value indicates that the password never expires.
minimum_password_lengthbigintThe minimum required number of characters in a password.
password_reuse_preventionbigintThe number of previous passwords that the user is prevented from reusing. Default value: 0. The default value indicates that the RAM user is not prevented from reusing previous passwords.
regiontextThe Alicloud region in which the resource is located.
require_lowercase_charactersbooleanIndicates whether a password must contain one or more lowercase letters.
require_numbersbooleanIndicates whether a password must contain one or more digits.
require_symbolsbooleanIndicates whether a password must contain one or more special characters.
require_uppercase_charactersbooleanIndicates whether a password must contain one or more uppercase letters.