2 Answers
- Newest
- Most votes
- Most comments
0
Thanks Didier, I'll test to see if this if feasible for Redshift. Yes I saw above for PostgreSQL, and plan on using this for PG, Just Redshift it appears different. I will try though ty
answered 2 months ago
Comment on his answer, don’t post another answer
0
Hi,
I think that you want to implement the pg Trusted Language Extensions (TLE) to enforce the password policy that you want as described here: https://repost.aws/knowledge-center/rds-postgresql-password-policy
A PostgreSQL passcheck hook checks passwords for SQL operations and doesn't
allow users to set passwords listed in the password_check.bad_passwords table.
The passcheck hook also checks password length and confirms that passwords
contain uppercase and lowercase letters, numbers, and special characters.
Best,
Didier
Relevant content
- asked 6 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 4 months ago
There are plenty of ways to get secure access to redshift without passwords. There’s IAM auth, Entra SSO auth, you don’t need to allow users to have passwords. I mean the only system I have that actually needs one is metabase cause it’s dumb (so I set up a rotating secret for it), I transitioned everyone else and all other apps off to sso/iam.