| Plugin Title | Password Reuse Prevention |
| Cloud | AWS |
| Category | IAM |
| Description | Ensures password policy prevents previous password reuse |
| More Info | A strong password policy enforces minimum length, expirations, reuse, and symbol usage |
| AWS Link | http://docs.aws.amazon.com/IAM/latest/UserGuide/Using_ManagingPasswordPolicies.html |
| Recommended Action | Increase the minimum previous passwords that can be reused to 24. |
- Log in to the AWS Management Console.
- Select the "Services" option and search for IAM.
- Scroll down the left navigation panel and choose "Account Settings" under "Access management".
- Under the "Password Policy" configuration panel scroll down and click on "Change password policy" button.
- On the "Set password policy" page scroll down and check the "Prevent password reuse". If the checkbox is not selected then the password policy does not prevent the reuse of password.
- Click on the checkbox next to "Prevent password reuse" so "Password Policy" prevents reuse of the older passwords. Enter the "Number of passwords to remember" to 24.
- Click on the "Save changes" button to make the necessary changes.
- Now "Password Policy" will prevent reuse of the older passwords for all the IAM users.
