Where can I see AWS Access Key auto deletion policy

52 Views Asked by Qadri At 04 October 2023 at 09:55

In my current work place, AWS Access Keys are deleted after 90 days for human users. For system users, the key is not deleted and throws an alert that key has gone over 90 days.

In the absence of anyone else at my workplace explaining this to me, I want to understand how this policy could have been implemented within AWS.

Where can I look into our AWS account to learn more about this implementation. thanks

Original Q&A

There are 1 best solutions below

jarmod On 04 October 2023 at 12:49

See Getting credential reports for your AWS account. There is an underlying IAM API called GetCredentialReport.

You can generate and download a credential report that lists all users in your account and the status of their various credentials, including passwords, access keys, and MFA devices. You can get a credential report from the AWS Management Console, the AWS SDKs and Command Line Tools, or the IAM API.

One way to call it is via the awscli:

aws iam get-credential-report

Passwords expire based on a password policy. Also see Managing access keys for IAM users.

Where can I see AWS Access Key auto deletion policy

There are 1 best solutions below

Related Questions in AMAZON-WEB-SERVICES

Related Questions in AWS-ACCESS-POLICY

Trending Questions

Popular # Hahtags

Popular Questions