PHTN-30-000024 - The Photon operating system must require that new passwords are at least four characters different from the old password.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version


Use of a complex password helps to increase the time and resources required to compromise the password. Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute-force attacks.


Navigate to and open:


Add the following, replacing any existing '' line:

password requisite dcredit=-1 ucredit=-1 lcredit=-1 ocredit=-1 minlen=8 minclass=4 difok=4 retry=3 maxsequence=0 enforce_for_root

Note: On vCenter appliances, the equivalent file must be edited under '/etc/applmgmt/appliance', if one exists, for the changes to persist after a reboot.

See Also

Item Details

References: CAT|II, CCI|CCI-000195, Rule-ID|SV-256501r887177_rule, STIG-ID|PHTN-30-000024, Vuln-ID|V-256501

Plugin: Unix

Control ID: e7f6fbeacce054071f046d96c153443d857715d7e171eb7c662431fbdfb5f7b9