CCSS (Common Configuration Scoring System) is a set of measures used to determine the severity of the rule.
Each rule is associated with a high-level category. For example IAM, Container, Monitoring, Logging, Network, etc.
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsAn enterprise's password policy should require a password length of at least 7 characters. Setting a password complexity policy increases account resiliency against brute force login attempts.
Set the aws_iam_account_password_policy
minimum_password_length
field to 7
and set all fields require_numbers
, require_lowercase_characters
, and require_uppercase_characters
to true
.
resource "aws_iam_account_password_policy" "example" {
minimum_password_length = 7
require_numbers = true
require_lowercase_characters = true
require_uppercase_characters = true
# other required fields here
}