access-keys-rotated

Checks if the active access keys are rotated within the number of days specified in maxAccessKeyAge. The rule is NON_COMPLIANT if the access keys have not been rotated for more than maxAccessKeyAge number of days.

Note

This rule requires you to turn on 'Include global resources' in general settings in order for resources to be evaluated.

Re-evaluating this rule within 4 hours of the first evaluation will have no effect on the results.

Identifier: ACCESS_KEYS_ROTATED

Trigger type: Periodic

Amazon Web Services Region: All supported Amazon regions except Middle East (UAE), Asia Pacific (Hyderabad), Asia Pacific (Melbourne), Europe (Spain), Europe (Zurich) Region

Parameters:

maxAccessKeyAge
Type: int
Default: 90: Maximum number of days without rotation. Default 90.

Amazon CloudFormation template

To create Amazon Config managed rules with Amazon CloudFormation templates, see Creating Amazon Config Managed Rules With Amazon CloudFormation Templates.

Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

List of Managed Rules

alb-http-drop-invalid-header-enabled