CCI|CCI-000198

Title

The information system enforces minimum password lifetime restrictions.

Reference Item Details

Category: 2024

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.50 WN10-AC-000030WindowsCIS Microsoft Windows 10 STIG v1.0.0 CAT II
1.53 WN16-AC-000060WindowsCIS Microsoft Windows Server 2016 STIG v4.0.0 DC CAT II
1.53 WN16-AC-000060WindowsCIS Microsoft Windows Server 2016 STIG v4.0.0 MS CAT II
1.53 WN19-AC-000060WindowsCIS Microsoft Windows Server 2019 STIG v4.0.0 DC CAT II
1.53 WN19-AC-000060WindowsCIS Microsoft Windows Server 2019 STIG v4.0.0 MS CAT II
1.53 WN22-AC-000060WindowsCIS Microsoft Windows Server 2022 STIG v3.0.0 DC CAT II
1.53 WN22-AC-000060WindowsCIS Microsoft Windows Server 2022 STIG v3.0.0 MS CAT II
1.75 SOL-11.1-040030UnixCIS Solaris 11 X86 STIG v1.0.0 CAT II
1.75 SOL-11.1-040030UnixCIS Solaris 11 SPARC STIG v1.0.0 CAT II
1.76 UBTU-22-411025UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.87 UBTU-24-400300UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.95 SLES-15-020200UnixCIS SUSE Linux Enterprise Server 15 STIG v1.0.0 CAT II
1.96 SLES-15-020210UnixCIS SUSE Linux Enterprise Server 15 STIG v1.0.0 CAT II
1.130 APPL-14-003070UnixCIS Apple macOS 14 Sonoma STIG v1.0.0 CAT II
1.178 OL08-00-020180UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.179 OL08-00-020190UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.300 ALMA-09-038190UnixCIS Cloud Linux AlmaLinux OS 9 STIG v1.0.0 CAT II
1.301 ALMA-09-038300UnixCIS Cloud Linux AlmaLinux OS 9 STIG v1.0.0 CAT II
1.324 RHEL-09-611075UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.325 RHEL-09-611080UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
4.012 - Minimum password age does not meet minimum requirements.WindowsDISA Windows Vista STIG v6r41
5.5.1.2 Ensure minimum days between password changes is configured - login.defsUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.5.1.2 Ensure minimum days between password changes is configured - password shadowUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
AIX7-00-001125 - AIX Operating systems must enforce 24 hours/1 day as the minimum password lifetime.UnixDISA IBM AIX 7.x STIG v3r2
ALMA-09-038190 - Passwords for existing users must have a 24-hour minimum password lifetime restriction in /etc/shadow.UnixDISA Cloud Linux AlmaLinux OS 9 STIG v1r6
ALMA-09-038300 - Passwords for new users or password changes must have a 24-hour minimum password lifetime restriction in /etc/login.defs.UnixDISA Cloud Linux AlmaLinux OS 9 STIG v1r6
APPL-14-003070 - The macOS system must set minimum password lifetime to 24 hours.UnixDISA Apple macOS 14 Sonoma STIG v2r4
F5BI-DM-000125 - The BIG-IP appliance must be configured to enforce 24 hours/1 day as the minimum password lifetime.F5DISA F5 BIG-IP Device Management STIG v2r4
GEN000540 - Users must not be able to change passwords more than once every 24 hours - /etc/shadowUnixDISA STIG Solaris 10 SPARC v2r4
GEN000540 - Users must not be able to change passwords more than once every 24 hours - /etc/shadowUnixDISA STIG Solaris 10 X86 v2r4
GEN000540 - Users must not be able to change passwords more than once every 24 hours - MINWEEKSUnixDISA STIG Solaris 10 SPARC v2r4
GEN000540 - Users must not be able to change passwords more than once every 24 hours - MINWEEKSUnixDISA STIG Solaris 10 X86 v2r4
GEN000540 - Users must not be able to change passwords more than once every 24 hours.UnixDISA STIG for Oracle Linux 5 v2r1
GEN000540 - Users must not be able to change passwords more than once every 24 hours.UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN000540 - Users must not be able to change passwords more than once every 24 hours.UnixDISA AIX 5.3 STIG v1r2
GEN000540 - Users must not be able to change passwords more than once every 24 hours.UnixDISA STIG AIX 6.1 v1r14
OL6-00-000051 - Users must not be able to change passwords more than once every 24 hours.UnixDISA STIG Oracle Linux 6 v2r7
OL07-00-010230 - The Oracle Linux operating system must be configured so that passwords for new users are restricted to a 24 hours/1 day minimum lifetime.UnixDISA Oracle Linux 7 STIG v3r5
OL07-00-010240 - The Oracle Linux operating system must be configured so that passwords are restricted to a 24 hours/1 day minimum lifetime.UnixDISA Oracle Linux 7 STIG v3r5
OL08-00-020180 - OL 8 passwords for new users or password changes must have a 24 hours/one day minimum password lifetime restriction in "/etc/shadow".UnixDISA Oracle Linux 8 STIG v2r8
OL08-00-020190 - OL 8 passwords for new users or password changes must have a 24 hours/one day minimum password lifetime restriction in "/etc/login.defs".UnixDISA Oracle Linux 8 STIG v2r8
PHTN-30-000027 - The Photon operating system must be configured so that passwords for new users are restricted to a 24-hour minimum lifetime.UnixDISA STIG VMware vSphere 7.0 Photon OS v1r4
PHTN-67-000027 - The Photon operating system must be configured so that passwords for new users are restricted to a 24-hour minimum lifetime.UnixDISA STIG VMware vSphere 6.7 Photon OS v1r6
RHEL-06-000051 - Users must not be able to change passwords more than once every 24 hours.UnixDISA Red Hat Enterprise Linux 6 STIG v2r2
RHEL-07-010230 - The Red Hat Enterprise Linux operating system must be configured so that passwords for new users are restricted to a 24 hours/1 day minimum lifetime.UnixDISA Red Hat Enterprise Linux 7 STIG v3r15
RHEL-07-010240 - The Red Hat Enterprise Linux operating system must be configured so that passwords are restricted to a 24 hours/1 day minimum lifetime.UnixDISA Red Hat Enterprise Linux 7 STIG v3r15
RHEL-08-020180 - RHEL 8 passwords must have a 24 hours/1 day minimum password lifetime restriction in /etc/shadow.UnixDISA Red Hat Enterprise Linux 8 STIG v2r7
RHEL-08-020190 - RHEL 8 passwords for new users or password changes must have a 24 hours/1 day minimum password lifetime restriction in /etc/login.defs.UnixDISA Red Hat Enterprise Linux 8 STIG v2r7
RHEL-09-611075 - RHEL 9 passwords for new users or password changes must have a 24 hours minimum password lifetime restriction in /etc/login.defs.UnixDISA Red Hat Enterprise Linux 9 STIG v2r8
RHEL-09-611080 - RHEL 9 passwords must have a 24 hours minimum password lifetime restriction in /etc/shadow.UnixDISA Red Hat Enterprise Linux 9 STIG v2r8