From b3696951c922610de0b9aa386122f615dcf6fb1c Mon Sep 17 00:00:00 2001
From: Moh'd Aziz Badawi <mohammedaz@live.com>
Date: Thu, 1 Jul 2021 14:01:21 +1000
Subject: [PATCH] Lowercasing TRUE for IAM password policy checks

he values for true and false in iam-password-policy are case-sensitive. If true is not provided in lowercase, it will be treated as false.
https://docs.aws.amazon.com/config/latest/developerguide/iam-password-policy.html
---
 .../Operational-Best-Practices-for-CIS-Top20.yaml         | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/aws-config-conformance-packs/Operational-Best-Practices-for-CIS-Top20.yaml b/aws-config-conformance-packs/Operational-Best-Practices-for-CIS-Top20.yaml
index ba40c98f3..d5cf84a0e 100644
--- a/aws-config-conformance-packs/Operational-Best-Practices-for-CIS-Top20.yaml
+++ b/aws-config-conformance-packs/Operational-Best-Practices-for-CIS-Top20.yaml
@@ -40,16 +40,16 @@ Parameters:
     Default: '24'
     Type: String
   IamPasswordPolicyParamRequireLowercaseCharacters:
-    Default: 'TRUE'
+    Default: 'true'
     Type: String
   IamPasswordPolicyParamRequireNumbers:
-    Default: 'TRUE'
+    Default: 'true'
     Type: String
   IamPasswordPolicyParamRequireSymbols:
-    Default: 'TRUE'
+    Default: 'true'
     Type: String
   IamPasswordPolicyParamRequireUppercaseCharacters:
-    Default: 'TRUE'
+    Default: 'true'
     Type: String
   IamUserUnusedCredentialsCheckParamMaxCredentialUsageAge:
     Default: '90'