Authentication

User customer secret keys are not rotated in the last 90 days

Risk Level

Informational (4)

Platform(s)
  • N/A

Compliance Frameworks

Description

A customer secret key is an Oracle-provided key for using the Object Storage Service's Amazon S3 compatible API. To use this Compatibility API, you need to generate the signing key required to authenticate with Amazon S3. This special signing key is an access Key/secret key pair. Oracle generates the customer secret key to pair with the access key. It was detected that user {OciUser.Name} has a customer secret key that was not rotated in the last 90 days. A customer secret key needs to be rotated every 90 days or less in order to decrease the likelihood of accidental exposures and protect your resources against unauthorized access.
  • Recommended Mitigation

    It is recommended to delete any access key related to user customer secret key that was not rotated in the last 90 days.