Password requirements when managing identities in IAM Identity Center - Amazon IAM Identity Center
Services or capabilities described in Amazon Web Services documentation might vary by Region. To see the differences applicable to the China Regions, see Getting Started with Amazon Web Services in China (PDF).

Password requirements when managing identities in IAM Identity Center


These requirements apply only to users created in the Identity Center directory. If you have configured an identity source other than IAM Identity Center for authentication, such as Active Directory or an external identity provider, the password policies for your users are defined and enforced in those systems, not in IAM Identity Center. If your identity source is Amazon Managed Microsoft AD, see Manage password policies for Amazon Managed Microsoft AD for more information.

When you use IAM Identity Center as your identity source, users must adhere to the following password requirements to set or change their password:

  • Passwords are case-sensitive.

  • Passwords must be between 8 and 64 characters in length.

  • Passwords must contain at least one character from each of the following four categories:

    • Lowercase letters (a-z)

    • Uppercase letters (A-Z)

    • Numbers (0-9)

    • Non-alphanumeric characters (~!@#$%^&*_-+=`|\(){}[]:;"'<>,.?/)

  • The last three passwords cannot be reused.

  • Passwords that are publicly known through a data set leaked from a third party cannot be used.