An error occurred:

Check: SOL-11.1-040070

Solaris 11 X86 STIG: SOL-11.1-040070 (in versions v3 r2 through v3 r1)

Title

The system must require passwords to contain at least one uppercase alphabetic character. (Cat II impact)

Discussion

Complex passwords can reduce the likelihood of success of automated password-guessing attacks.

Check Content

Check the MINUPPER setting. # grep ^MINUPPER /etc/default/passwd If MINUPPER is not set to one or more, this is a finding.

Fix Text

The root role is required. # pfedit /etc/default/passwd Locate the line containing: MINUPPER Change the line to read: MINUPPER=1

Additional Identifiers

Rule ID: SV-216092r1016287_rule

Vulnerability ID: V-216092

Group Title: SRG-OS-000069

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-000192

The information system enforces password complexity by the minimum number of upper case characters used.
CCI-004066

For password-based authentication, enforce organization-defined composition and complexity rules.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
IA-5(1)

Password-based Authentication