Fortigate - Password Complexity - 1 non-alphanum character

Information

Password must contain at least one non-alphanumeric character. Enforcing strong password policies reduces the chance that a password will be compromised.

Solution

Use this command to configure higher security requirements for administrator passwords and
IPsec VPN pre-shared keys.

config system password-policy
set status {enable | disable}
set apply-to [admin-password ipsec-preshared-key]
set change-4-characters {enable | disable}
set expire <days>
set minimum-length <chars>
set min-lower-case-letter <num_int>
set min-upper-case-letter <num_int>
set min-non-alphanumeric <num_int>
set min-number <num_int>
set expire-status {enable | disable}
set expire-day <num_int>
end

See Also

https://docs.fortinet.com/document/fortigate/6.4.0/hardening-your-fortigate/612504/hardening-your-fortigate

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(1)(a)

Plugin: FortiGate

Control ID: 93988644127ce730e9d7a221702cb42ddaf402d50cec27e2cd285933df55df38