SRG-OS-000075-GPOS-00043 Controls

STIG IDVersionTitleProduct
ALMA-09-038190V1R1Passwords for existing users must have a 24-hour minimum password lifetime restriction in /etc/shadow.
ALMA-09-038300V1R1Passwords for new users or password changes must have a 24-hour minimum password lifetime restriction in /etc/login.defs.
UBTU-18-010106V2R15The Ubuntu operating system must enforce 24 hours/1 day as the minimum password lifetime. Passwords for new users must have a 24 hours/1 day minimum password lifetime restriction.
UBTU-20-010007V1R9The Ubuntu operating system must enforce 24 hours/1 day as the minimum password lifetime. Passwords for new users must have a 24 hours/1 day minimum password lifetime restriction.
UBTU-24-400300V1R1Ubuntu 24.04 LTS must enforce 24 hours/1 day as the minimum password lifetime. Passwords for new users must have a 24 hours/1 day minimum password lifetime restriction.
WN22-AC-000060V2R1Windows Server 2022 minimum password age must be configured to at least one day.
WN10-AC-000030V2R8The minimum password age must be configured to at least 1 day.
APPL-15-003070V1R1The macOS system must set minimum password lifetime to 24 hours.
APPL-14-003070V2R1The macOS system must set minimum password lifetime to 24 hours.
WN11-AC-000030V2R1The minimum password age must be configured to at least 1 day.
UBTU-22-411025V2R1Ubuntu 22.04 LTS must enforce 24 hours/one day as the minimum password lifetime. Passwords for new users must have a 24 hours/one day minimum password lifetime restriction.
RHEL-08-020180V1R9RHEL 8 passwords must have a 24 hours/1 day minimum password lifetime restriction in /etc/shadow.
RHEL-08-020190V1R9RHEL 8 passwords for new users or password changes must have a 24 hours/1 day minimum password lifetime restriction in /etc/login.defs.
RHEL-07-010230V3R8The Red Hat Enterprise Linux operating system must be configured so that passwords for new users are restricted to a 24 hours/1 day minimum lifetime.
RHEL-07-010240V3R8The Red Hat Enterprise Linux operating system must be configured so that passwords are restricted to a 24 hours/1 day minimum lifetime.
RHEL-09-611075V2R1RHEL 9 passwords for new users or password changes must have a 24 hours minimum password lifetime restriction in /etc/login.defs.
RHEL-09-611080V2R1RHEL 9 passwords must have a 24 hours minimum password lifetime restriction in /etc/shadow.
OL09-00-001085V1R1OL 9 passwords for new users or password changes must have a 24-hour minimum password lifetime restriction in /etc/login.defs.
OL09-00-001090V1R1OL 9 passwords must have a 24-hour minimum password lifetime restriction in /etc/shadow.
WN16-AC-000060V2R10Windows Server 2016 minimum password age must be configured to at least one day.
SLES-15-020200V1R9The SUSE operating system must be configured to create or update passwords with a minimum lifetime of 24 hours (one day).
SLES-15-020210V1R9The SUSE operating system must employ user passwords with a minimum lifetime of 24 hours (one day).
SLES-12-010260V2R13The SUSE operating system must be configured to create or update passwords with a minimum lifetime of 24 hours (one day).
SLES-12-010270V2R13The SUSE operating system must employ user passwords with a minimum lifetime of 24 hours (one day).
OL07-00-010230V2R14The Oracle Linux operating system must be configured so that passwords for new users are restricted to a 24 hours/1 day minimum lifetime.
OL07-00-010240V2R14The Oracle Linux operating system must be configured so that passwords are restricted to a 24 hours/1 day minimum lifetime.
WN19-AC-000060V2R8Windows Server 2019 minimum password age must be configured to at least one day.
OL08-00-020180V1R9OL 8 passwords for new users or password changes must have a 24 hours/1 day minimum password lifetime restriction in "/etc/shadow".
OL08-00-020190V1R9OL 8 passwords for new users or password changes must have a 24 hours/1 day minimum password lifetime restriction in "/etc/login.defs".
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.