Ensure RAM Security Preference is Enforce MFA Login

SecurityPreference is used to configure security preferences for Resource Access Management (RAM) users. Specifies whether MFA is required for all RAM users when they log on to the Alibaba Cloud Management Console by using usernames and passwords.

Risk Level: high
Platform: Alicloud
Spectral Rule ID: TFALCLD055


set enforce_mfa_for_login to 'true' or define resource alicloud_ram_security_preference

+ resource "alicloud_ram_user" "user0" {...}

- enforce_mfa_for_login = false
+ enforce_mfa_for_login = true

+ resource "alicloud_ram_security_preference" "example2" {...}

Read more: