3.1.2.14 minspecialchar

Information

Defines the minimum number of special characters in a password.

Rationale:

In setting the minspecialchar attribute, the password must contain a special character when it is changed by the user.

Solution

In /etc/security/user, set the default user stanza minspecialchar attribute to 1:

chsec -f /etc/security/user -s default -a minspecialchar=1

This means that there must be at least 1 special character within a password.

Default Value:

default minspecialchar=0

See Also

https://workbench.cisecurity.org/files/3525

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(1), CSCv7|4.4

Plugin: Unix

Control ID: 69c387fa0b92d035d10a4bb66bb4f4f0da20b49a11981d7760cc4d0c2911c4e2