CCI|CCI-000198

Title

The information system enforces minimum password lifetime restrictions.

Reference Item Details

Category: 2024

Audit Items

View all Reference Audit Items

NamePluginAudit Name
4.012 - Minimum password age does not meet minimum requirements.WindowsDISA Windows Vista STIG v6r41
5.5.1.2 Ensure minimum days between password changes is configured - login.defsUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.5.1.2 Ensure minimum days between password changes is configured - password shadowUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
AIX7-00-001125 - AIX Operating systems must enforce 24 hours/1 day as the minimum password lifetime.UnixDISA STIG AIX 7.x v3r1
APPL-14-003070 - The macOS system must set minimum password lifetime to 24 hours.UnixDISA Apple macOS 14 (Sonoma) STIG v2r2
F5BI-DM-000125 - The BIG-IP appliance must be configured to enforce 24 hours/1 day as the minimum password lifetime.F5DISA F5 BIG-IP Device Management STIG v2r3
GEN000540 - Users must not be able to change passwords more than once every 24 hours - /etc/shadowUnixDISA STIG Solaris 10 X86 v2r4
GEN000540 - Users must not be able to change passwords more than once every 24 hours - /etc/shadowUnixDISA STIG Solaris 10 SPARC v2r4
GEN000540 - Users must not be able to change passwords more than once every 24 hours - MINWEEKSUnixDISA STIG Solaris 10 SPARC v2r4
GEN000540 - Users must not be able to change passwords more than once every 24 hours - MINWEEKSUnixDISA STIG Solaris 10 X86 v2r4
GEN000540 - Users must not be able to change passwords more than once every 24 hours.UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000540 - Users must not be able to change passwords more than once every 24 hours.UnixDISA STIG AIX 5.3 v1r2
GEN000540 - Users must not be able to change passwords more than once every 24 hours.UnixDISA STIG AIX 6.1 v1r14
GEN000540 - Users must not be able to change passwords more than once every 24 hours.UnixDISA STIG for Oracle Linux 5 v2r1
OL6-00-000051 - Users must not be able to change passwords more than once every 24 hours.UnixDISA STIG Oracle Linux 6 v2r7
OL07-00-010230 - The Oracle Linux operating system must be configured so that passwords for new users are restricted to a 24 hours/1 day minimum lifetime.UnixDISA Oracle Linux 7 STIG v3r1
OL07-00-010240 - The Oracle Linux operating system must be configured so that passwords are restricted to a 24 hours/1 day minimum lifetime.UnixDISA Oracle Linux 7 STIG v3r1
OL08-00-020180 - OL 8 passwords for new users or password changes must have a 24 hours/one day minimum password lifetime restriction in '/etc/shadow'.UnixDISA Oracle Linux 8 STIG v2r2
OL08-00-020190 - OL 8 passwords for new users or password changes must have a 24 hours/one day minimum password lifetime restriction in '/etc/login.defs'.UnixDISA Oracle Linux 8 STIG v2r2
PHTN-30-000027 - The Photon operating system must be configured so that passwords for new users are restricted to a 24-hour minimum lifetime.UnixDISA STIG VMware vSphere 7.0 Photon OS v1r3
PHTN-67-000027 - The Photon operating system must be configured so that passwords for new users are restricted to a 24-hour minimum lifetime.UnixDISA STIG VMware vSphere 6.7 Photon OS v1r6
RHEL-06-000051 - Users must not be able to change passwords more than once every 24 hours.UnixDISA Red Hat Enterprise Linux 6 STIG v2r2
RHEL-07-010230 - The Red Hat Enterprise Linux operating system must be configured so that passwords for new users are restricted to a 24 hours/1 day minimum lifetime.UnixDISA Red Hat Enterprise Linux 7 STIG v3r15
RHEL-07-010240 - The Red Hat Enterprise Linux operating system must be configured so that passwords are restricted to a 24 hours/1 day minimum lifetime.UnixDISA Red Hat Enterprise Linux 7 STIG v3r15
RHEL-08-020180 - RHEL 8 passwords must have a 24 hours/1 day minimum password lifetime restriction in /etc/shadow.UnixDISA Red Hat Enterprise Linux 8 STIG v2r1
RHEL-08-020190 - RHEL 8 passwords for new users or password changes must have a 24 hours/1 day minimum password lifetime restriction in /etc/login.defs.UnixDISA Red Hat Enterprise Linux 8 STIG v2r1
RHEL-09-611075 - RHEL 9 passwords for new users or password changes must have a 24 hours minimum password lifetime restriction in /etc/login.defs.UnixDISA Red Hat Enterprise Linux 9 STIG v2r2
RHEL-09-611080 - RHEL 9 passwords must have a 24 hours minimum password lifetime restriction in /etc/shadow.UnixDISA Red Hat Enterprise Linux 9 STIG v2r2
SLES-12-010260 - The SUSE operating system must be configured to create or update passwords with a minimum lifetime of 24 hours (one day).UnixDISA SLES 12 STIG v3r1
SLES-12-010270 - The SUSE operating system must employ user passwords with a minimum lifetime of 24 hours (one day).UnixDISA SLES 12 STIG v3r1
SLES-15-020200 - The SUSE operating system must be configured to create or update passwords with a minimum lifetime of 24 hours (one day).UnixDISA SLES 15 STIG v2r2
SLES-15-020210 - The SUSE operating system must employ user passwords with a minimum lifetime of 24 hours (one day).UnixDISA SLES 15 STIG v2r2
SQL2-00-038910 - If SQL Server authentication, using passwords, is employed, SQL Server must enforce the DoD standards for password lifetime.MS_SQLDBDISA STIG SQL Server 2012 DB Instance Security v1r20
SQL4-00-038910 - If SQL Server authentication, using passwords, is employed, SQL Server must enforce the DoD standards for password lifetime.MS_SQLDBDISA STIG SQL Server 2014 Instance DB Audit v2r4
UBTU-16-010210 - Passwords for new users must have a 24 hours/1 day minimum password lifetime restriction.UnixDISA STIG Ubuntu 16.04 LTS v2r3
UBTU-18-010106 - The Ubuntu operating system must enforce 24 hours/1 day as the minimum password lifetime. Passwords for new users must have a 24 hours/1 day minimum password lifetime restriction.UnixDISA STIG Ubuntu 18.04 LTS v2r15
UBTU-20-010007 - The Ubuntu operating system must enforce 24 hours/1 day as the minimum password lifetime. Passwords for new users must have a 24 hours/1 day minimum password lifetime restriction.UnixDISA STIG Ubuntu 20.04 LTS v2r1
UBTU-22-411025 - Ubuntu 22.04 LTS must enforce 24 hours/one day as the minimum password lifetime. Passwords for new users must have a 24 hours/one day minimum password lifetime restriction.UnixDISA STIG Canonical Ubuntu 22.04 LTS v2r2
WN10-AC-000030 - The minimum password age must be configured to at least 1 day.WindowsDISA Windows 10 STIG v3r2
WN11-AC-000030 - The minimum password age must be configured to at least 1 day.WindowsDISA Windows 11 STIG v2r2
WN12-AC-000006 - The minimum password age must meet requirements.WindowsDISA Windows Server 2012 and 2012 R2 DC STIG v3r7
WN12-AC-000006 - The minimum password age must meet requirements.WindowsDISA Windows Server 2012 and 2012 R2 MS STIG v3r7
WN16-AC-000060 - Windows Server 2016 minimum password age must be configured to at least one day.WindowsDISA Windows Server 2016 STIG v2r9
WN19-AC-000060 - Windows Server 2019 minimum password age must be configured to at least one day.WindowsDISA Windows Server 2019 STIG v3r2
WN22-AC-000060 - Windows Server 2022 minimum password age must be configured to at least one day.WindowsDISA Windows Server 2022 STIG v2r2