Skip to main content

KMS Secret Automatic Rotation Enabled

ID: rule:aliyun:kms-secret-rotation-enabled
Severity: medium
IaC Types: ROS, Terraform

Description

Ensures that KMS secrets have automatic rotation enabled to enhance security by periodically rotating secret values.

Reason for Violation

The KMS secret does not have automatic rotation enabled, which may increase the risk of credential compromise over time.

Recommendation

Enable automatic rotation for the KMS secret by setting enable_automatic_rotation to true.

Resource Types

ROS: ALIYUN::KMS::Secret
Terraform: alicloud_kms_secret

Description
Reason for Violation
Recommendation
Resource Types