|
|
|
|
|
|
by ali_piccioni
798 days ago
|
|
|
Long lived credentials are a security red flag. We setup our AWS organization’s policies (SCPs) to prohibit long-lived tokens. Instead access goes through SSO or OIDC. It’s difficult to track usage behind access tokens, prevent leaks, and effectively revoke them. |
|
|