Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.8 Set a system-wide password expirationCIS Sybase 15.0 L2 DB v1.1.0SybaseDB

IDENTIFICATION AND AUTHENTICATION

2.1.7 - AirWatch - Set the 'number of days' for 'maximum password age'AirWatch - CIS Google Android 4 v1.0.0 L2MDM

IDENTIFICATION AND AUTHENTICATION

2.3.6.5 (L1) Ensure 'Domain member: Maximum machine account password age' is set to '30 or fewer days, but not 0'CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1Windows

IDENTIFICATION AND AUTHENTICATION

2.3.6.5 (L1) Ensure 'Domain member: Maximum machine account password age' is set to '30 or fewer days, but not 0'CIS Windows Server 2012 MS L1 v3.0.0Windows

IDENTIFICATION AND AUTHENTICATION

2.3.6.5 (L1) Ensure 'Domain member: Maximum machine account password age' is set to '30 or fewer days, but not 0'CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MSWindows

IDENTIFICATION AND AUTHENTICATION

2.3.6.5 (L1) Ensure 'Domain member: Maximum machine account password age' is set to '30 or fewer days, but not 0'CIS Windows Server 2012 R2 MS L1 v3.0.0Windows

IDENTIFICATION AND AUTHENTICATION

2.3.6.5 Ensure 'Domain member: Maximum machine account password age' is set to '30 or fewer days, but not 0'CIS Windows 7 Workstation Level 1 v3.2.0Windows

IDENTIFICATION AND AUTHENTICATION

2.4 Password Security - 'maximum password age <= 90'TNS NetApp Data ONTAP 7GNetApp

IDENTIFICATION AND AUTHENTICATION

2.4 Password Security - 'minimum password age >= 1'TNS NetApp Data ONTAP 7GNetApp

IDENTIFICATION AND AUTHENTICATION

2.6 Ensure 'password_lifetime' is Less Than or Equal to '365'CIS MariaDB 10.6 Database L1 v1.1.0MySQLDB

IDENTIFICATION AND AUTHENTICATION

2.7 Ensure 'password_lifetime' is Less Than or Equal to '365'CIS MySQL 8.4 Enterprise v1.0.0 L1 DatabaseMySQLDB

IDENTIFICATION AND AUTHENTICATION

2.7 Ensure 'password_lifetime' is Less Than or Equal to '365'CIS MySQL 8.0 Community Database L1 v1.1.0MySQLDB

IDENTIFICATION AND AUTHENTICATION

2.8 Set 'Password Expiration' to '90' or lessCIS Microsoft Exchange Server 2016 CAS v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

3.4 - Login and Password Parameters - Password expiration warningNetApp Security Hardening Guide for ONTAP 9 v1.7.0Netapp_API

IDENTIFICATION AND AUTHENTICATION

4.2 Ensure the vpxuser account's password is automatically changed every 10 or fewer daysCIS VMware ESXi 5.1 v1.0.1 Level 1VMware

IDENTIFICATION AND AUTHENTICATION

5.2.7 Password AgeCIS Apple macOS 10.12 L1 v1.2.0Unix

IDENTIFICATION AND AUTHENTICATION

5.2.8 Password HistoryCIS Apple OSX 10.11 El Capitan L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

5.2.8 Password HistoryCIS Apple OSX 10.10 Yosemite L1 v1.2.0Unix

IDENTIFICATION AND AUTHENTICATION

7.1 Set Password Expiration Parameters on Active Accounts - MAXWEEKS = 13CIS Solaris 11.2 L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

7.1 Set Password Expiration Parameters on Active Accounts - loginsCIS Solaris 11 L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

7.1 Set Password Expiration Parameters on Active Accounts - loginsCIS Solaris 11.1 L1 v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

7.1 Set Password Expiration Parameters on Active Accounts - MINWEEKS = 1CIS Solaris 11 L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

7.1 Set Password Expiration Parameters on Active Accounts - WARNWEEKS = 4CIS Solaris 11 L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

7.2 Set Password Expiration Parameters on Active Accounts - Check MINWEEKS is set to 1CIS Solaris 10 L1 v5.2Unix

IDENTIFICATION AND AUTHENTICATION

7.2 Set Password Expiration Parameters on Active Accounts - Check WARNWEEKS is set to 4CIS Solaris 10 L1 v5.2Unix

IDENTIFICATION AND AUTHENTICATION

9.8 Check Permissions on User '.' (Hidden) FilesCIS Solaris 11.1 L1 v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

10.1.1 Set Password Expiration DaysCIS Debian Linux 7 L1 v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

18.9.25.2 (L1) Ensure 'Do not allow password expiration time longer than required by policy' is set to 'Enabled'CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLockerWindows

IDENTIFICATION AND AUTHENTICATION

18.9.25.2 (L1) Ensure 'Do not allow password expiration time longer than required by policy' is set to 'Enabled'CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NGWindows

IDENTIFICATION AND AUTHENTICATION

18.9.25.2 (L1) Ensure 'Do not allow password expiration time longer than required by policy' is set to 'Enabled'CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NGWindows

IDENTIFICATION AND AUTHENTICATION

18.9.25.2 (L1) Ensure 'Do not allow password expiration time longer than required by policy' is set to 'Enabled'CIS Microsoft Windows Server 2025 v1.0.0 L1 MSWindows

IDENTIFICATION AND AUTHENTICATION

18.9.25.2 (L1) Ensure 'Do not allow password expiration time longer than required by policy' is set to 'Enabled'CIS Microsoft Windows Server 2019 v3.0.1 L1 MSWindows

IDENTIFICATION AND AUTHENTICATION

18.9.25.2 Ensure 'Do not allow password expiration time longer than required by policy' is set to 'Enabled'CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 MSWindows

IDENTIFICATION AND AUTHENTICATION

20.32 Ensure 'krbtgt account password' is no more than '180 days old' (STIG DC only)CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DCWindows

IDENTIFICATION AND AUTHENTICATION

Brocade - maximum password age must be set to no more than 60 daysTenable Best Practices Brocade FabricOSBrocade

IDENTIFICATION AND AUTHENTICATION

Brocade - minimum password age must be set to at least 30 daysTenable Best Practices Brocade FabricOSBrocade

IDENTIFICATION AND AUTHENTICATION

Extreme : Password Policy - min-length >= 8TNS Extreme ExtremeXOS Best Practice AuditExtreme_ExtremeXOS

IDENTIFICATION AND AUTHENTICATION

Fortigate - Password Expiry date <= 30 daysTNS Fortigate FortiOS Best Practices v2.0.0FortiGate

IDENTIFICATION AND AUTHENTICATION

IBM i : Block Password Change (QPWDCHGBLK) - '>=48'IBM System i Security Reference for V7R1 and V6R1AS/400

IDENTIFICATION AND AUTHENTICATION

IBM i : Block Password Change (QPWDCHGBLK) - '>=48'IBM System i Security Reference for V7R3AS/400

IDENTIFICATION AND AUTHENTICATION

IBM i : Password Expiration Interval (QPWDEXPITV) - '30 to 90'IBM System i Security Reference for V7R3AS/400

IDENTIFICATION AND AUTHENTICATION

IBM i : Password Expiration Interval (QPWDEXPITV) - '90'IBM System i Security Reference for V7R1 and V6R1AS/400

IDENTIFICATION AND AUTHENTICATION

IBM i : Password Expiration Warning (QPWDEXPWRN) - '<=14'IBM System i Security Reference for V7R2AS/400

IDENTIFICATION AND AUTHENTICATION

IBM i : Password Expiration Warning (QPWDEXPWRN) - '<=14'IBM System i Security Reference for V7R3AS/400

IDENTIFICATION AND AUTHENTICATION

Minimum period between password changes (hours)Tenable Cisco ACICisco_ACI

IDENTIFICATION AND AUTHENTICATION

Number of changes allowed within the change interval (changes)Tenable Cisco ACICisco_ACI

IDENTIFICATION AND AUTHENTICATION

Password Change Interval (hours)Tenable Cisco ACICisco_ACI

IDENTIFICATION AND AUTHENTICATION

Routing Protocol Security - Periodically change route authentication keys in accordance with your organization's security policyJuniper Hardening JunOS 12 Devices ChecklistJuniper

IDENTIFICATION AND AUTHENTICATION

Salesforce.com : Setting Password Policies - 'Minimum 1 day password lifetime'TNS Salesforce Best Practices Audit v1.2.0Salesforce.com

IDENTIFICATION AND AUTHENTICATION

Salesforce.com : Setting Password Policies - 'passwords expire >= 90'TNS Salesforce Best Practices Audit v1.2.0Salesforce.com

IDENTIFICATION AND AUTHENTICATION