standard
turbot/aws_compliance

Trigger: Detect & correct IAM account password policies without minimum length of 14

Detects IAM account password policies without minimum length of 14 and then updates to minimum length of 14.

Query

select
a.account_id as title,
a.account_id,
a.sp_connection_name as conn
from
aws_account as a
left join aws_iam_account_password_policy as pol on a.account_id = pol.account_id
where
minimum_password_length < 14
or minimum_password_length is null;

Schedule

15m

Tags

category = Compliance
mod = aws
service = AWS/IAM