Check: 4.013
Win2k8 Audit:
4.013
(in version v6 r1.22)
Title
For systems utilizing a logon ID as the individual identifier, passwords are not at a minimum of 14-characters. (Cat II impact)
Discussion
Information systems not protected with strong password schemes including passwords of minimum length provide the opportunity for anyone to crack the password thus gaining access to the system and causing the device, information, or the local network to be compromised or a denial of service.
Check Content
Fix Text
Configure all information systems to require passwords of the minimun length specified in the check.
Additional Identifiers
Rule ID: SV-29389r1_rule
Vulnerability ID: V-6836
Group Title: Minimum Password Length
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |