Identity domain customer secret keys should be rotated every 90 days or less

oracle-cloud-infrastructure
Esta página aún no está disponible en español. Estamos trabajando en su traducción.
Si tienes alguna pregunta o comentario sobre nuestro actual proyecto de traducción, no dudes en ponerte en contacto con nosotros.

Description

Oracle Cloud identity domain customer secret keys should be rotated at least every 90 days to reduce the risk of unauthorized access from compromised credentials. Regular rotation of customer secret keys is a security best practice that limits the window of opportunity for attackers to exploit compromised credentials.

Note: Identity domain users that are in an inactive state are not assessed.

Remediation

Rotate customer secret keys that are older than 90 days by creating new customer secret keys and deleting the old ones. For guidance on managing customer secret keys, refer to the Working with Customer Secret Keys section in the Oracle Cloud Infrastructure Documentation.