Detections
Analytics

8.2.6 Create a Strong Password

Information

When creating or changing passwords for local keystone files, ensure that the passwords are strong, by using the -strong parameter of the gsk8capicmd_64 command.

Rationale:

A stronger password prevents unauthorized access to the database.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Use the -strong parameter on the gsk8capicmd_64 command:

$ gsk8capicmd_64 -keydb -create -dbmykeystore.p12

 -pw <yourpasswordhere> -strong -stash

See Also

https://workbench.cisecurity.org/benchmarks/23492

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(1), CSCv7|4.4

Plugin: IBM_DB2DB

Control ID: 5d1f5abcff6a193acc3eae728e598f82a63720d43e5899a84915fe1a21a3bebb