A Terraform module for creating and managing IAM account password policies.
module "password_policy" {
source = "github.com/TerraformToolbox/terraform-aws-iam-account-password-policy"
allow_user_change = true
hard_expiry = false
maximum_age = 90
minimum_length = 16
require_lowercase = true
require_numbers = true
require_symbols = true
require_uppercase = true
reuse_history = 24
}
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| allow_user_change | Allow users to change their own password? | bool | false | No |
| hard_expiry | Prevented from setting a new password after their password has expired? | bool | false | No |
| maximum_age | The number of days that an user password is valid. | number | 90 | No |
| minimum_length | The shortest length a password can be. | number | 16 | No |
| require_lowercase | Must the password contain lowercase characters? | bool | true | No |
| require_numbers | Must the password contain numbers? | bool | true | No |
| require_symbols | Must the password contain symbols? | bool | true | No |
| require_uppercase | Must the password contain uppercase characters? | bool | true | No |
| reuse_history | The number of previous passwords that users are prevented from reusing. | number | 24 | No |
| Name | Description |
|---|---|
| expire_passwords | Indicates whether passwords in the account expire. Returns true if max_password_age contains a value greater than 0. Returns false if it is 0 or not present. |
