A password policy can be set on your AWS account to specify complexity requirements and mandatory rotation periods for your IAM users’ passwords. You can use a password policy to do these things: Set a minimum password length. Require specific character types, including uppercase letters, lowercase letters, numbers, and non-alphanumeric characters. Be sure to remind your users that passwords are case sensitive. Allow all IAM users to change their own passwords. Require IAM users to change their password after a specified period of time (enable password expiration). Prevent IAM users from reusing previous passwords. Force IAM users to contact an account administrator when the user has allowed his or her password to expire.
As part of managing the password policy, you can let all users manage their own passwords.
To create or change a password policy (console)
Setting a Password Policy (AWS CLI)
To manage an account password policy from the AWS CLI, run the following commands:
Setting a Password Policy (AWS API)
To manage an account password policy from the AWS API, call the following operations: