» alicloud_ram_account_password_policy

Provides a RAM password policy configuration for entire account. Only one resource per account.

» Example Usage

Empty resource sets defaults values for every property.

resource "alicloud_ram_account_password_policy" "default" {

}
resource "alicloud_ram_account_password_policy" "corporate" {
  minimum_password_length      = 9
  require_lowercase_characters = false
  require_uppercase_characters = false
  require_numbers              = false
  require_symbols              = false
  hard_expiry                  = true
  max_password_age             = 12
  password_reuse_prevention    = 5
  max_login_attempts           = 3
}

For not specified values sets defaults.

» Argument Reference

The following arguments are supported:

  • default_minimum_password_length - (Optional, Type: int) Minimal required length of password for a user. Valid value range: [8-32]. Default to 12.
  • default_require_lowercase_characters - (Optional, Type: bool) Specifies if the occurrence of a lowercase character in the password is mandatory. Default to true.
  • default_require_uppercase_characters - (Optional, Type: bool) Specifies if the occurrence of an uppercase character in the password is mandatory. Default to true.
  • default_require_numbers - (Optional, Type: bool) Specifies if the occurrence of a number in the password is mandatory. Default to true.
  • default_require_symbols - (Optional, Type: bool) Specifies if the occurrence of a special character in the password is mandatory. Default to true.
  • default_hard_expiry - (Optional, Type: bool) Specifies if a password can expire in a hard way. Default to false.
  • default_max_password_age - (Optional, Type: int) The number of days after which password expires. A value of 0 indicates that the password never expires. Valid value range: [0-1095]. Default to 0.
  • default_password_reuse_prevention - (Optional, Type: int) User is not allowed to use the latest number of passwords specified in this parameter. A value of 0 indicates the password history check policy is disabled. Valid value range: [0-24]. Default to 0.
  • default_max_login_attempts - (Optional, Type: int) Maximum logon attempts with an incorrect password within an hour. Valid value range: [0-32]. Default to 5.

» Import

RAM account password policy can be imported using the id, e.g.

$ terraform import alicloud_ram_account_password_policy.example ram-account-password-policy