Menu
AWS Identity and Access Management
API Reference (API Version 2010-05-08)

PasswordPolicy

Contains information about the account password policy.

This data type is used as a response element in the GetAccountPasswordPolicy action.

Contents

AllowUsersToChangePassword

Specifies whether IAM users are allowed to change their own password.

Type: Boolean

Required: No

ExpirePasswords

Indicates whether passwords in the account expire. Returns true if MaxPasswordAge is contains a value greater than 0. Returns false if MaxPasswordAge is 0 or not present.

Type: Boolean

Required: No

HardExpiry

Specifies whether IAM users are prevented from setting a new password after their password has expired.

Type: Boolean

Required: No

MaxPasswordAge

The number of days that an IAM user password is valid.

Type: Integer

Valid Range: Minimum value of 1. Maximum value of 1095.

Required: No

MinimumPasswordLength

Minimum length to require for IAM user passwords.

Type: Integer

Valid Range: Minimum value of 6. Maximum value of 128.

Required: No

PasswordReusePrevention

Specifies the number of previous passwords that IAM users are prevented from reusing.

Type: Integer

Valid Range: Minimum value of 1. Maximum value of 24.

Required: No

RequireLowercaseCharacters

Specifies whether to require lowercase characters for IAM user passwords.

Type: Boolean

Required: No

RequireNumbers

Specifies whether to require numbers for IAM user passwords.

Type: Boolean

Required: No

RequireSymbols

Specifies whether to require symbols for IAM user passwords.

Type: Boolean

Required: No

RequireUppercaseCharacters

Specifies whether to require uppercase characters for IAM user passwords.

Type: Boolean

Required: No

See Also

For more information about using this API in one of the language-specific AWS SDKs, see the following:

On this page: