1.3.6 Ensure 'Minimum Special Characters' is greater than or equal to 1

Information

This checks all new passwords to ensure that they contain at least one non-alphabetic character (for example, !, $, #, %).

Rationale:

This is one of several settings that, when taken together, ensure that passwords are sufficiently complex as to thwart brute force and dictionary attacks.

Solution

Navigate to Device > Setup > Management > Minimum Password Complexity
Set Minimum Special Characters to greater than or equal to 1

Default Value:

Not enabled.

See Also

https://workbench.cisecurity.org/benchmarks/17915

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(1), CSCv7|4.4

Plugin: Palo_Alto

Control ID: db8f40fa6d829347fe665ebc2d7f5c6e162cb75da3b71d1443315d777e4159ab