---
names:
  full: "Oracle IAM User API keys are not rotated every 90 days"
  contextual: "IAM User API keys are not rotated every 90 days"
description: >
  Oracle IAM user API keys should be rotated at least every 90 days. Stale
  active API keys increase the exposure window for compromised long-term
  credentials.
type: COMPLIANCE_POLICY
categories:
  - SECURITY
frameworkMappings:
  - "/frameworks/cis-oracle-v3.1.0/01/08"
  - "/frameworks/cloudaware/identity-and-access-governance/credential-lifecycle-management"