CCI|CCI-004066

Title

For password-based authentication, enforce organization-defined composition and complexity rules.

Reference Item Details

Category: 2024

Audit Items

View all Reference Audit Items

NamePluginAudit Name
AIOS-16-006500 - Apple iOS/iPadOS 16 must be configured to enforce a minimum password length of six characters.MDMMobileIron - DISA Apple iOS/iPadOS 16 v2r1
AIOS-16-006500 - Apple iOS/iPadOS 16 must be configured to enforce a minimum password length of six characters.MDMAirWatch - DISA Apple iOS/iPadOS 16 v2r1
AIOS-17-006500 - Apple iOS/iPadOS 17 must be configured to enforce a minimum password length of six characters.MDMMobileIron - DISA Apple iOS/iPadOS 17 v2r1
AIOS-17-006500 - Apple iOS/iPadOS 17 must be configured to enforce a minimum password length of six characters.MDMAirWatch - DISA Apple iOS/iPadOS 17 v2r1
AIOS-17-006600 - Apple iOS/iPadOS 17 must be configured to not allow passwords that include more than four repeating or sequential characters.MDMAirWatch - DISA Apple iOS/iPadOS 17 v2r1
AIOS-17-006600 - Apple iOS/iPadOS 17 must be configured to not allow passwords that include more than four repeating or sequential characters.MDMMobileIron - DISA Apple iOS/iPadOS 17 v2r1
AIX7-00-001120 - AIX must enforce password complexity by requiring that at least one upper-case character be used.UnixDISA STIG AIX 7.x v3r1
AIX7-00-001121 - AIX must enforce password complexity by requiring that at least one lower-case character be used.UnixDISA STIG AIX 7.x v3r1
AIX7-00-001122 - AIX must enforce password complexity by requiring that at least one numeric character be used.UnixDISA STIG AIX 7.x v3r1
AIX7-00-001123 - AIX must require the change of at least 50% of the total number of characters when passwords are changed.UnixDISA STIG AIX 7.x v3r1
AIX7-00-001125 - AIX Operating systems must enforce 24 hours/1 day as the minimum password lifetime.UnixDISA STIG AIX 7.x v3r1
AIX7-00-001126 - AIX Operating systems must enforce a 60-day maximum password lifetime restriction.UnixDISA STIG AIX 7.x v3r1
AIX7-00-001128 - AIX must use Loadable Password Algorithm (LPA) password hashing algorithm.UnixDISA STIG AIX 7.x v3r1
AIX7-00-001129 - AIX must enforce a minimum 15-character password length.UnixDISA STIG AIX 7.x v3r1
AIX7-00-001130 - AIX must enforce password complexity by requiring that at least one special character be used.UnixDISA STIG AIX 7.x v3r1
APPL-14-003007 - The macOS system must require passwords contain a minimum of one numeric character.UnixDISA Apple macOS 14 (Sonoma) STIG v2r2
APPL-14-003008 - The macOS system must restrict maximum password lifetime to 60 days.UnixDISA Apple macOS 14 (Sonoma) STIG v2r2
APPL-14-003010 - The macOS system must require a minimum password length of 14 characters.UnixDISA Apple macOS 14 (Sonoma) STIG v2r2
APPL-14-003011 - The macOS system must require passwords contain a minimum of one special character.UnixDISA Apple macOS 14 (Sonoma) STIG v2r2
APPL-14-003060 - The macOS system must require passwords contain a minimum of one lowercase character and one uppercase character.UnixDISA Apple macOS 14 (Sonoma) STIG v2r2
APPL-14-003070 - The macOS system must set minimum password lifetime to 24 hours.UnixDISA Apple macOS 14 (Sonoma) STIG v2r2
APPL-15-003007 - The macOS system must require that passwords contain a minimum of one numeric character.UnixDISA Apple macOS 15 (Sequoia) STIG v1r1
APPL-15-003008 - The macOS system must restrict maximum password lifetime to 60 days.UnixDISA Apple macOS 15 (Sequoia) STIG v1r1
APPL-15-003010 - The macOS system must require a minimum password length of 14 characters.UnixDISA Apple macOS 15 (Sequoia) STIG v1r1
APPL-15-003011 - The macOS system must require that passwords contain a minimum of one special character.UnixDISA Apple macOS 15 (Sequoia) STIG v1r1
APPL-15-003060 - The macOS system must require that passwords contain a minimum of one lowercase character and one uppercase character.UnixDISA Apple macOS 15 (Sequoia) STIG v1r1
APPL-15-003070 - The macOS system must set minimum password lifetime to 24 hours.UnixDISA Apple macOS 15 (Sequoia) STIG v1r1
ARST-ND-000380 - The Arista network device must enforce a minimum 15-character password length.AristaDISA STIG Arista MLS EOS 4.2x NDM v2r1
CASA-ND-000490 - The Cisco ASA must be configured to enforce a minimum 15-character password length.CiscoDISA STIG Cisco ASA NDM v2r2
CASA-ND-000520 - The Cisco ASA must be configured to enforce password complexity by requiring that at least one uppercase character be used.CiscoDISA STIG Cisco ASA NDM v2r2
CASA-ND-000530 - The Cisco ASA must be configured to enforce password complexity by requiring that at least one lowercase character be used.CiscoDISA STIG Cisco ASA NDM v2r2
CASA-ND-000550 - The Cisco ASA must be configured to enforce password complexity by requiring that at least one numeric character be used.CiscoDISA STIG Cisco ASA NDM v2r2
CASA-ND-000570 - The Cisco ASA must be configured to enforce password complexity by requiring that at least one special character be used.CiscoDISA STIG Cisco ASA NDM v2r2
CASA-ND-000580 - The Cisco ASA must be configured to require that when a password is changed, the characters are changed in at least eight of the positions within the password.CiscoDISA STIG Cisco ASA NDM v2r2
CISC-ND-000550 - The Cisco router must be configured to enforce a minimum 15-character password length.CiscoDISA STIG Cisco IOS XE Router NDM v3r2
CISC-ND-000550 - The Cisco router must be configured to enforce a minimum 15-character password length.CiscoDISA STIG Cisco IOS Router NDM v3r2
CISC-ND-000550 - The Cisco switch must be configured to enforce a minimum 15-character password length.CiscoDISA STIG Cisco IOS XE Switch NDM v3r2
CISC-ND-000550 - The Cisco switch must be configured to enforce a minimum 15-character password length.CiscoDISA STIG Cisco IOS Switch NDM v3r2
CISC-ND-000570 - The Cisco router must be configured to enforce password complexity by requiring that at least one uppercase character be used.CiscoDISA STIG Cisco IOS Router NDM v3r2
CISC-ND-000570 - The Cisco router must be configured to enforce password complexity by requiring that at least one uppercase character be used.CiscoDISA STIG Cisco IOS XE Router NDM v3r2
CISC-ND-000570 - The Cisco switch must be configured to enforce password complexity by requiring that at least one uppercase character be used.CiscoDISA STIG Cisco IOS Switch NDM v3r2
CISC-ND-000570 - The Cisco switch must be configured to enforce password complexity by requiring that at least one uppercase character be used.CiscoDISA STIG Cisco IOS XE Switch NDM v3r2
CISC-ND-000570 - The Cisco switch must be configured to enforce password complexity by requiring that at least one uppercase character be used.CiscoDISA STIG Cisco NX-OS Switch NDM v3r2
CISC-ND-000580 - The Cisco router must be configured to enforce password complexity by requiring that at least one lowercase character be used.CiscoDISA STIG Cisco IOS XE Router NDM v3r2
CISC-ND-000580 - The Cisco router must be configured to enforce password complexity by requiring that at least one lowercase character be used.CiscoDISA STIG Cisco IOS Router NDM v3r2
CISC-ND-000580 - The Cisco switch must be configured to enforce password complexity by requiring that at least one lower-case character be used.CiscoDISA STIG Cisco NX-OS Switch NDM v3r2
CISC-ND-000580 - The Cisco switch must be configured to enforce password complexity by requiring that at least one lowercase character be used.CiscoDISA STIG Cisco IOS Switch NDM v3r2
CISC-ND-000580 - The Cisco switch must be configured to enforce password complexity by requiring that at least one lowercase character be used.CiscoDISA STIG Cisco IOS XE Switch NDM v3r2
CISC-ND-000590 - The Cisco router must be configured to enforce password complexity by requiring that at least one numeric character be used.CiscoDISA STIG Cisco IOS XE Router NDM v3r2
CISC-ND-000590 - The Cisco router must be configured to enforce password complexity by requiring that at least one numeric character be used.CiscoDISA STIG Cisco IOS Router NDM v3r2