search

CU-CloudCollab / aws-config-check

These scripts provide an easy way to check if your AWS account is in compliance with configuration required by Cornell policy.
2 stars 0 forks source link

Check for strong password policy #3

Closed sbower closed 8 years ago

sbower commented 8 years ago

Though users should not use passwords with IAM users we should make sure a sufficiently string policy is in place in case they do use it.

paul-e-allen commented 8 years ago

We can point them so this, and/or begin using it as standard with our account setup:

https://github.com/CU-CloudCollab/aws-examples/blob/master/aws-ruby-sdk/iam/set-iam-password-policy.rb

sbower commented 8 years ago

yup sounds good. We should get into the regular account setup.

paul-e-allen commented 8 years ago

added password policy check to the script with this commit: https://github.com/CU-CloudCollab/aws-config-check/commit/0d43ffb411d4e2704a607c80d71a3b4b4ca24275

The password policy check uses the parameters suggested in https://github.com/CU-CloudCollab/aws-examples/blob/master/aws-ruby-sdk/iam/set-iam-password-policy.rb, but does not use that code directly.