WN11-00-000090 - Accounts must be configured to require password expiration.

Information

Passwords that do not expire increase exposure with a greater probability of being discovered or cracked.

Solution

Configure all passwords to expire.
Run 'Computer Management'.
Navigate to System Tools >> Local Users and Groups >> Users.
Double-click each active account.
Ensure 'Password never expires' is not checked on all active accounts.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_11_V2R3_STIG.zip

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(1)(d), CAT|II, CCI|CCI-000199, CCI|CCI-004066, Rule-ID|SV-253273r1051040_rule, STIG-ID|WN11-00-000090, Vuln-ID|V-253273

Plugin: Windows

Control ID: 209b2a99b4cf1d6cd63830a8eb1b862903ca1dae01d0c5722e308946e94671c9