2 Antworten
- Neueste
- Die meisten Stimmen
- Die meisten Kommentare
0
Thanks Didier, I'll test to see if this if feasible for Redshift. Yes I saw above for PostgreSQL, and plan on using this for PG, Just Redshift it appears different. I will try though ty
beantwortet vor 4 Monaten
Comment on his answer, don’t post another answer
0
Hi,
I think that you want to implement the pg Trusted Language Extensions (TLE) to enforce the password policy that you want as described here: https://repost.aws/knowledge-center/rds-postgresql-password-policy
A PostgreSQL passcheck hook checks passwords for SQL operations and doesn't
allow users to set passwords listed in the password_check.bad_passwords table.
The passcheck hook also checks password length and confirms that passwords
contain uppercase and lowercase letters, numbers, and special characters.
Best,
Didier
Relevanter Inhalt
- AWS OFFICIALAktualisiert vor 3 Monaten
- AWS OFFICIALAktualisiert vor 2 Jahren
- AWS OFFICIALAktualisiert vor 7 Monaten
- AWS OFFICIALAktualisiert vor 22 Tagen
There are plenty of ways to get secure access to redshift without passwords. There’s IAM auth, Entra SSO auth, you don’t need to allow users to have passwords. I mean the only system I have that actually needs one is metabase cause it’s dumb (so I set up a rotating secret for it), I transitioned everyone else and all other apps off to sso/iam.