Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

Impact of IAM Password Expiry Policy on Access Keys and Secret Keys

0

I'm using AWS Textract with IAM user credentials (access key and secret key). In AWS Security Hub, I see a control that recommends ensuring the IAM password policy expires passwords within 90 days or less. If I set a policy to expire passwords, will the expiration of a user's password affect the functionality of their access key and secret key? Specifically, will the access key and secret key continue to work even if the user's password has expired?

Topics
Machine Learning & AISecurity, Identity, & Compliance
Tags
Amazon TextractAWS Identity and Access ManagementAWS Security Hub
Language
English
asked a year ago893 views
2 Answers
1
Accepted Answer

Password expiry only affects passwords for the IAM user, not access and secret keys.

AWS
EXPERT
answered a year ago
EXPERT
reviewed a year ago
1

Hi Tates,

The expiration of an IAM user’s password will not affect the functionality of their access key and secret key. The access keys will continue to work for programmatic access even if the user's password has expired, as these are separate authentication mechanisms.

https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_access-keys.html#Using_RotateAccessKey

EXPERT
answered a year ago
EXPERT
reviewed a year ago
EXPERT
reviewed a year ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content