Query: 1.8 Ensure user API keys rotate within 90 days

Description

API keys are used by administrators, developers, services and scripts for accessing OCI APIs directly or via SDKs/OCI CLI to search, create, update or delete OCI resources. The API key is an RSA key pair. The private key is used for signing the API requests and the public key is associated with a local or synchronized user's profile.

Query

Tables used in this query:

• oci_identity_api_key

Controls using this query:

• 1.8 Ensure user API keys rotate within 90 days
• 1.8 Ensure user API keys rotate within 90 days or less
• 1.8 Ensure user API keys rotate within 90 days or less

SQL