CSCv6|16.12

Title

Where multi-factor authentication is not supported, user accounts shall be required to use long passwords on the system (longer than 14 characters).

Description

Where multi-factor authentication is not supported, user accounts shall be required to use long passwords on the system (longer than 14 characters).

Reference Item Details

Category: Account Monitoring and Control

Family: Application

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Windows Server 2012 R2 MS L1 v2.5.0
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Windows Server 2012 R2 DC L1 v2.5.0
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Windows Server 2012 MS L1 v2.2.0
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Microsoft Windows Server 2016 DC L1 v1.3.0
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Windows Server 2012 DC L1 v2.2.0
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.2.0
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.2.0
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'WindowsCIS Microsoft Windows Server 2016 MS L1 v1.3.0
1.3.1 Ensure 'Minimum Password Complexity' is enabledPalo_AltoCIS Palo Alto Firewall 6 Benchmark L1 v1.0.0
1.3.1 Ensure 'Minimum Password Complexity' is enabledPalo_AltoCIS Palo Alto Firewall 8 Benchmark L1 v1.0.0
1.3.1 Ensure 'Minimum Password Complexity' is enabledPalo_AltoCIS Palo Alto Firewall 7 Benchmark L1 v1.0.0
1.3.2 Ensure 'Minimum Length' is greater than or equal to 12Palo_AltoCIS Palo Alto Firewall 8 Benchmark L1 v1.0.0
1.3.2 Ensure 'Minimum Length' is greater than or equal to 12Palo_AltoCIS Palo Alto Firewall 6 Benchmark L1 v1.0.0
1.3.2 Ensure 'Minimum Length' is greater than or equal to 12Palo_AltoCIS Palo Alto Firewall 7 Benchmark L1 v1.0.0
5.3.1 Ensure password creation requirements are configured - dcreditUnixCIS Debian 8 Workstation L1 v2.0.2
5.3.1 Ensure password creation requirements are configured - dcreditUnixCIS Amazon Linux v2.1.0 L1
5.3.1 Ensure password creation requirements are configured - dcreditUnixCIS Distribution Independent Linux Workstation L1 v2.0.0
5.3.1 Ensure password creation requirements are configured - dcreditUnixCIS Debian 8 Server L1 v2.0.2
5.3.1 Ensure password creation requirements are configured - dcreditUnixCIS Distribution Independent Linux Server L1 v2.0.0
5.3.1 Ensure password creation requirements are configured - lcreditUnixCIS Debian 8 Workstation L1 v2.0.2
5.3.1 Ensure password creation requirements are configured - lcreditUnixCIS Distribution Independent Linux Workstation L1 v2.0.0
5.3.1 Ensure password creation requirements are configured - lcreditUnixCIS Debian 8 Server L1 v2.0.2
5.3.1 Ensure password creation requirements are configured - lcreditUnixCIS Distribution Independent Linux Server L1 v2.0.0
5.3.1 Ensure password creation requirements are configured - minlenUnixCIS Amazon Linux v2.1.0 L1
5.3.1 Ensure password creation requirements are configured - minlenUnixCIS Debian 8 Workstation L1 v2.0.2
5.3.1 Ensure password creation requirements are configured - minlenUnixCIS Distribution Independent Linux Workstation L1 v2.0.0
5.3.1 Ensure password creation requirements are configured - minlenUnixCIS Debian 8 Server L1 v2.0.2
5.3.1 Ensure password creation requirements are configured - minlenUnixCIS Distribution Independent Linux Server L1 v2.0.0
5.3.1 Ensure password creation requirements are configured - ocreditUnixCIS Debian 8 Server L1 v2.0.2
5.3.1 Ensure password creation requirements are configured - ocreditUnixCIS Debian 8 Workstation L1 v2.0.2
5.3.1 Ensure password creation requirements are configured - ocreditUnixCIS Distribution Independent Linux Workstation L1 v2.0.0
5.3.1 Ensure password creation requirements are configured - ocreditUnixCIS Distribution Independent Linux Server L1 v2.0.0
5.3.1 Ensure password creation requirements are configured - password-auth lcreditUnixCIS Amazon Linux v2.1.0 L1
5.3.1 Ensure password creation requirements are configured - password-auth ocreditUnixCIS Amazon Linux v2.1.0 L1
5.3.1 Ensure password creation requirements are configured - password-auth retry=3UnixCIS Amazon Linux v2.1.0 L1
5.3.1 Ensure password creation requirements are configured - password-auth try_first_passUnixCIS Amazon Linux v2.1.0 L1
5.3.1 Ensure password creation requirements are configured - password-auth ucreditUnixCIS Amazon Linux v2.1.0 L1
5.3.1 Ensure password creation requirements are configured - retry=3UnixCIS Debian 8 Server L1 v2.0.2
5.3.1 Ensure password creation requirements are configured - retry=3UnixCIS Distribution Independent Linux Workstation L1 v2.0.0
5.3.1 Ensure password creation requirements are configured - retry=3UnixCIS Debian 8 Workstation L1 v2.0.2
5.3.1 Ensure password creation requirements are configured - retry=3UnixCIS Distribution Independent Linux Server L1 v2.0.0
5.3.1 Ensure password creation requirements are configured - system-auth try_first_passUnixCIS Amazon Linux v2.1.0 L1
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'WindowsCIS Windows Server 2012 DC L1 v2.2.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'WindowsCIS Microsoft Windows Server 2016 DC L1 v1.3.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'WindowsCIS Windows Server 2012 MS L1 v2.2.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'WindowsCIS Windows Server 2012 R2 MS L1 v2.5.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'WindowsCIS Windows Server 2012 R2 DC L1 v2.5.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'WindowsCIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.2.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'WindowsCIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.2.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'WindowsCIS Microsoft Windows Server 2016 MS L1 v1.3.0