Posted On: Nov 19, 2020

Amazon Identity and Access Management (IAM) now introduces new policy defaults for passwords of IAM users. This policy improves the default security for all Amazon Web Services customers by ensuring customers set stronger passwords for IAM users in their Amazon Web Services accounts. 

You can view the new default password policy in your IAM console under Account settings. When you sign up for a new Amazon Web Services account this policy will be active by default. To configure your specific password requirements, you can override this policy by setting a custom policy. If you delete the custom password policy, IAM will automatically activate the default password policy in your Amazon Web Services account. 

This new feature is available in all Amazon Web Services Regions including the Amazon Web Services China (Beijing) Region operated by Sinnet, and the Amazon Web Services China (Ningxia) Region operated by NWCD. To learn more about impact of this change for your IAM users, see IAM documentation