Check: 4.012
Windows XP STIG:
4.012
(in versions v6 r1.32 through v1 r0)
Title
Minimum password age does not meet minimum requirements. (Cat II impact)
Discussion
Permitting passwords to be changed in immediate succession within the same day, allows users to cycle passwords through their history database. This enables users to effectively negate the purpose of mandating periodic password changes.
Check Content
Analyze the system using the Security Configuration and Analysis snap-in. Expand the Security Configuration and Analysis tree view. Navigate to Account Policies -> Password Policy. If the value for the “Minimum password age” is less than one day, then this is a finding.
Fix Text
Configure the Minimum Password Age so that it is a minimum of "1".
Additional Identifiers
Rule ID: SV-28992r1_rule
Vulnerability ID: V-1105
Group Title: Minimum Password Age
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |