---
names:
  full: Oracle IAM User has more than one active API key
  contextual: IAM User has more than one active API key
description: >
  Oracle IAM users should have no more than one active API key. Extra active API
  keys increase credential exposure risk and should be removed after key
  rotation or migration is complete.
type: COMPLIANCE_POLICY
categories:
  - SECURITY
frameworkMappings:
  - "/frameworks/cis-oracle-v3.1.0/01/17"
  - "/frameworks/cloudaware/identity-and-access-governance/credential-lifecycle-management"