3.1.2.14 minspecialchar

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Defines the minimum number of special characters in a password.

Rationale:

In setting the minspecialchar attribute, the password must contain a special character when it is changed by the user.

Solution

In /etc/security/user, set the default user stanza minspecialchar attribute to 1:

chsec -f /etc/security/user -s default -a minspecialchar=1

This means that there must be at least 1 special character within a password.

Default Value:

default minspecialchar=0

See Also

https://workbench.cisecurity.org/files/3525