and they can possibly do a lot of things, especially if they’re, administrators, they can change the configuration, delete resources, and other things. this is great, a password policy, really is helpful, against brute force attacks on your accounts. Then you can allow or not, IAM users to change their own passwords or you can require users to change their password, after some time, to make your password expire, for example, say every 90 days, users have to change their passwords.įinally, you can also prevent password reuse that users when they change their passwords, don’t change it to the one they already have or change it to the one they had before. The first one is you can set a minimum password length, and you can require specific character types, for example, you may want to have an uppercase letter, lowercase letter, number, non-alphanumeric characters, for example, a question mark, and so on. in AWS, you can set up a password policy with different options. Why? because the stronger the password you use the more security for your accounts. The first one is to define what’s called a Password Policy.
for this, we can have two defense mechanisms.
Now that we have created users and groups, it is time for us to protect these users and groups from being compromised.
0 kommentar(er)
