5.2.2 Set a minimum password length

Information

A minimum password length is the fewest number of characters a password can contain to meet a system's requirements. Information systems that are not protected with strong password schemes including passwords of minimum length provide a greater opportunity for attackers to crack the password and gain access to the system.

Solution

Perform the following to implement the prescribed state for all pwpolicy controls Run the following command in Terminal: sudo pwpolicy -setglobalpolicy "maxFailedLoginAttempts=5 minChars=15 requiresNumeric=1 requiresAlpha=1 requiresSymbol=1" Impact: Short passwords can be easily attacked.

See Also

https://workbench.cisecurity.org/files/299

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(1)(a)

Plugin: Unix

Control ID: 717309355666ebb2afa2b0f2ab512bbf3a21fe65c741db871eeedd279616c642