Access keys should be rotated every 90 days or less

This page is not yet available in Spanish. We are working on its translation.
If you have any questions or feedback about our current translation project, feel free to reach out to us!

Description

Access keys consist of an access key ID and a secret access key, and they are used to sign programmatic requests made to AWS. AWS users need their own access keys to perform tasks using the AWS CLI, Tools for Windows PowerShell, AWS SDKs, or direct HTTP calls using the APIs for individual AWS services. It is important to regularly rotate all access keys to maintain security.

Rotating access keys reduces the risk of keys associated with a compromised or terminated account being exploited. Regular rotation ensures that old keys, which may have been lost, cracked, or stolen, cannot be used to access data.

Remediation

For instructions on rotating access keys safely and effectively, refer to Rotating Access Keys.