An error occurred:

Check: 3.028

Windows 2003 DC STIG: 3.028 (in version v6 r40)

Title

The built-in Microsoft password filter is not enabled. (Cat III impact)

Discussion

The use of complex passwords increases their strength against guessing. This policy setting configures the system to verify that newly-created passwords conform to the Windows password complexity policy.

Check Content

Fix Text

Configure the policy value for Computer Configuration -> Windows Settings -> Security Settings -> Account Policies -> Password Policy -> “Password must meet complexity requirements” to "Enabled".

Additional Identifiers

Rule ID: SV-29683r1_rule

Vulnerability ID: V-1150

Group Title:

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-000192

The information system enforces password complexity by the minimum number of upper case characters used.
CCI-000193

The information system enforces password complexity by the minimum number of lower case characters used.
CCI-000194

The information system enforces password complexity by the minimum number of numeric characters used.
CCI-001619

The information system enforces password complexity by the minimum number of special characters used.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
IA-5(1)

Password-based Authentication