1.3.6 Ensure 'Minimum Special Characters' is greater than or equal to 1

Information

This checks all new passwords to ensure that they contain at least one non-alphabetic character (for example, !, $, #, %).

Rationale:

This is one of several settings that, when taken together, ensure that passwords are sufficiently complex as to thwart brute force and dictionary attacks.

Solution

Navigate to Device > Setup > Management > Minimum Password Complexity
Set Minimum Special Characters to greater than or equal to 1

Default Value:

Not enabled.

See Also

https://workbench.cisecurity.org/benchmarks/13792

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(1), CSCv7|4.4

Plugin: Palo_Alto

Control ID: 8627aa2d41da30a6cf24374cc36e118ca0d8a7341ca9f2211fe6dd52a6fc144c