Identity domain API keys should be rotated every 90 days or less

oracle-cloud-infrastructure
이 페이지는 아직 한국어로 제공되지 않습니다. 번역 작업 중입니다.
현재 번역 프로젝트에 대한 질문이나 피드백이 있으신 경우 언제든지 연락주시기 바랍니다.

Description

Oracle Cloud identity domain API keys should be rotated at least every 90 days to reduce the risk of unauthorized access from compromised credentials. Regular rotation of API keys is a security best practice that limits the window of opportunity for attackers to exploit compromised credentials.

Note: Identity domain users that are in an inactive state are not assessed.

Remediation

Rotate API keys that are older than 90 days by creating new API keys and deleting the old ones. For guidance on managing API keys, refer to the Working with API Keys section in the Oracle Cloud Infrastructure Documentation.