IAM Password policy should have requirement for at least one uppercase character.
, IAM account password policies should ensure that passwords content including at least one uppercase character.
Impact
Short, simple passwords are easier to compromise
Recommended Actions
Follow the appropriate remediation steps below to resolve the issue.
-
Log in to the AWS Management Console.
-
Select the “Services” option and search for IAM.
-
Scroll down the left navigation panel and choose “Account Settings” under “Access management”.
-
Under the “Password Policy” configuration panel scroll down and click on “Change password policy” button.
-
On the “Set password policy” page scroll down and check the “Require at least one uppercase letter from Latin alphabet (A-Z)”. If the checkbox is not selected than the password policy does not enforces the use of uppercase letters in password.
-
Click on the checkbox next to “Require at least one uppercase letter from Latin alphabet (A-Z)” so “Password Policy” requires at least one uppercase letter to make the password more strong and secure.
-
Click on the “Save changes” button to make the necessary changes.
-
Now “Password Policy” ensures that the password requires uppercase letters.