Identity domain users should have no more than one API key

oracle-cloud-infrastructure
이 페이지는 아직 한국어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

Oracle Cloud identity domain users should have no more than one active API key to minimize security risks and reduce the potential attack surface. Multiple active API keys increase the risk of credential compromise and makes access management more complex.

Note: Identity domain users that are in an inactive state are not assessed.

Remediation

Review and deactivate or delete unnecessary active API keys, ensuring each user retains only one active API key for their operational needs. For guidance on managing API keys, refer to the Working with API Keys section in the Oracle Cloud Infrastructure Documentation.