https://github.com/terraformtoolbox/terraform-aws-iam-account-password-policy

A terraform module for managing AWS IAM account password policies.
https://github.com/terraformtoolbox/terraform-aws-iam-account-password-policy

aws aws-iam aws-iam-policies security terraform terraform-module wolfsoftware

Last synced: 7 months ago
JSON representation

A terraform module for managing AWS IAM account password policies.

• Host: GitHub
• URL: https://github.com/terraformtoolbox/terraform-aws-iam-account-password-policy
• Owner: TerraformToolbox
• License: mit
• Created: 2025-01-23T12:31:09.000Z (9 months ago)
• Default Branch: master
• Last Pushed: 2025-03-17T04:42:21.000Z (7 months ago)
• Last Synced: 2025-03-17T05:30:19.564Z (7 months ago)
• Topics: aws, aws-iam, aws-iam-policies, security, terraform, terraform-module, wolfsoftware
• Language: HCL
• Homepage:
• Size: 50.8 KB
• Stars: 1
• Watchers: 0
• Forks: 0
• Open Issues: 1
• Metadata Files:
  • Readme: README.md
  • Contributing: .github/CONTRIBUTING.md
  • Funding: .github/FUNDING.yml
  • License: LICENSE.md
  • Code of conduct: .github/CODE_OF_CONDUCT.md
  • Citation: CITATION.cff
  • Codeowners: .github/CODEOWNERS
  • Security: .github/SECURITY.md

Awesome Lists containing this project

README

          



    

        

    

    


    

        

    

    

        

    

    

        

    

    


    

        

    

    

        

    

    

        

    

    


    

        

    

    

        

    

    

        

    

    

        

    



## Overview

A Terraform module for creating and managing IAM account password policies.

## Usage

```

module "password_policy" {

  source = "github.com/TerraformToolbox/terraform-aws-iam-account-password-policy"

  allow_user_change = true

  hard_expiry       = false

  maximum_age       = 90

  minimum_length    = 16

  require_lowercase = true

  require_numbers   = true

  require_symbols   = true

  require_uppercase = true

  reuse_history     = 24

}

```

## Inputs

| Name | Description | Type | Default | Required |

| ---- | ----------- |:----:|:-------:|:--------:|

| allow_user_change | Allow users to change their own password? | bool | false | No |

| hard_expiry | Prevented from setting a new password after their password has expired? | bool | false | No |

| maximum_age | The number of days that an user password is valid. | number | 90 | No |

| minimum_length | The shortest length a password can be. | number | 16 | No |

| require_lowercase | Must the password contain lowercase characters? | bool | true | No |

| require_numbers | Must the password contain numbers? | bool | true | No |

| require_symbols | Must the password contain symbols? | bool | true | No |

| require_uppercase | Must the password contain uppercase characters? | bool | true | No |

| reuse_history | The number of previous passwords that users are prevented from reusing. | number | 24 | No |

## Outputs

| Name | Description |

| ---- | ----------- |

| expire_passwords | Indicates whether passwords in the account expire. Returns true if max_password_age contains a value greater than 0. Returns false if it is 0 or not present. |