Ensures password policy enforces a password expiration
A strong password policy enforces minimum length, expirations, reuse, and symbol usage
Follow the appropriate remediation steps below to resolve the issue.
Log into the AWS Management Console.
Select the “Services” option and search for IAM.
Scroll down the left navigation panel and choose “Account Settings”.
Under the “Password Policy” configuration panel scroll down and check the “Enable password expiration”. If the “Enable password expiration” checkbox is not ticked then the password won’t expire in any number of days.
Click on the “Enable password expiration” checkbox and mention the days under “Password expiration period (in days)” so that the password will be expired after the defined days. For better security reasons define the number of days to at least more than 120.
Click on the “Apply Password Policy” button to make the necessary changes.
Now “Password Policy” will enforce a password expiration for all the IAM users.