1.3.6 Ensure 'Minimum Special Characters' is greater than or equal to 1

Information

This checks all new passwords to ensure that they contain at least one non-alphabetic character (for example, !, $, #, %).

Rationale:

This is one of several settings that, when taken together, ensure that passwords are sufficiently complex as to thwart brute force and dictionary attacks.

Solution

Navigate to Device > Setup > Management > Minimum Password Complexity
Set Minimum Special Characters to greater than or equal to 1

Default Value:

Not enabled.

See Also

https://workbench.cisecurity.org/benchmarks/8826

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(1), CSCv7|16

Plugin: Palo_Alto

Control ID: 0cfec27a3294715e76e84e0509d99c9049cb73c0c22af16e0346007984efd865