Skip to main content

RAM User Login Enabled Check

ID: rule:aliyun:ram-user-login-check
Severity: medium

Description

Ensures that RAM users who do not need console access have login disabled.

Reason for Violation

Disabling console login for users who only need API access reduces security risks.

Recommendation

Disable console login for RAM users who only use AccessKeys.

Resource Types

  • ALIYUN::RAM::User