Aqua CSPM

Password Reuse Prevention

Quick Info

Plugin TitlePassword Reuse Prevention
CloudAWS
CategoryIAM
DescriptionEnsures password policy prevents previous password reuse
More InfoA strong password policy enforces minimum length, expirations, reuse, and symbol usage
AWS Linkhttp://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingPasswordPolicies.html
Recommended ActionIncrease the minimum previous passwords that can be reused to 24.

Detailed Remediation Steps

  1. Log into the AWS Management Console.
  2. Select the “Services” option and search for IAM.
  3. Scroll down the left navigation panel and choose “Account Settings”.
  4. Under the “Password Policy” configuration panel scroll down and check the “Prevent password reuse “. If the checkbox is not selected than the password policy does not prevents the reuse of password.
  5. Repeat steps number 3 and 4 to prevent reuse of password .
  6. Click on the checkbox next to “Prevent password reuse” so “Password Policy” prevents reuse of the older passwords. Enter the “Number of passwords to remember” to 24 .
  7. Click on the “Apply Password Policy” button to make the necessary changes.