v1.0 for Steampipe, Powerpipe, Flowpipe, 116 plugins, and 44 mods →
Powerpipe Hub 
Hub
Mods
turbot/alicloud_compliance
Overview
1Dashboards
78Controls
40Queries
2Variables
GitHub

Control: 1.11 Ensure RAM password policy requires minimum length of 14 or greater

Description

RAM password policies can be used to ensure password complexity. It is recommended that the password policy require a minimum of 14 or greater characters for any password.

Remediation

Perform the following to set the password policy:

From Console

  1. Logon to RAM console.
  2. Choose Identities > Settings.
  3. In the Password Strength Settings section, click Edit Password Rule.
  4. In the Password Length field, enter <14> or a greater number.
  5. Click OK.

From Command Line

aliyun ram SetPasswordPolicy --MinimumPasswordLength 14

Usage

Run the control in your terminal:

powerpipe control run alicloud_compliance.control.cis_v100_1_11

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run alicloud_compliance.control.cis_v100_1_11 --share

SQL

This control uses a named query:

ram_account_password_policy_min_length_14

Tags

category = Compliance
cis = true
cis_item_id = 1.11
cis_level = 1
cis_section_id = 1
cis_type = automated
cis_version = v1.0.0
plugin = alicloud
service = AliCloud/RAM