IAM account password policies should ensure that passwords have a minimum length.
The account password policy should be set to enforce minimum password length of at least 14 characters.
Short, simple passwords are easier to compromise
Follow the appropriate remediation steps below to resolve the issue.
Enforce longer, more complex passwords in the policy