Identity domain auth tokens should be rotated every 90 days or less

oracle-cloud-infrastructure
이 페이지는 아직 한국어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

Oracle Cloud identity domain auth tokens should be rotated at least every 90 days to reduce the risk of unauthorized access from compromised credentials. Regular rotation of auth tokens is a security best practice that limits the window of opportunity for attackers to exploit compromised credentials.

Note: Identity domain users that are in an inactive state are not assessed.

Remediation

Rotate auth tokens that are older than 90 days by creating new auth tokens and deleting the old ones. For guidance on managing auth tokens, refer to the Working with Auth Tokens section in the Oracle Cloud Infrastructure Documentation.