Ensure RAM Account Password Policy is with Reuse Prevention

Provides a RAM password policy configuration for entire account. Only one resource per account. User is not allowed to use the latest number of passwords specified in this parameter. A value of 0 indicates the password history check policy is disabled. Default to 0.

Suggest Edits

Risk Level: medium
Platform: Alicloud
Spectral Rule ID: TFALCLD031

REMEDIATION

set password_reuse_prevention to be less than 24

- password_reuse_prevention = 25
+ password_reuse_prevention = 24

https://registry.terraform.io/providers/aliyun/alicloud/latest/docs/resources/ram_account_password_policy#password_reuse_prevention
https://www.alibabacloud.com/help/en/resource-orchestration-service/latest/ram

Updated about 1 year ago

REMEDIATION

Read more: