| SRG-OS-000480-GPOS-00225 | V2R1 | The operating system must prevent the use of dictionary words for passwords. | |
| SRG-OS-000480-GPOS-00226 | V2R1 | The operating system must enforce a delay of at least 4 seconds between logon prompts following a failed logon attempt. | |
| SRG-OS-000480-GPOS-00227 | V2R1 | The operating system must be configured in accordance with the security configuration settings based on DoD security configuration or implementation guidance, including STIGs, NSA configuration guides, CTOs, and DTMs. | |
| SRG-OS-000480-GPOS-00228 | V2R1 | The operating system must define default permissions for all authenticated users in such a way that the user can only read and modify their own files. | |
| SRG-OS-000480-GPOS-00229 | V2R1 | The operating system must not allow an unattended or automatic logon to the system. | |
| SRG-OS-000480-GPOS-00230 | V2R1 | The operating system must limit the ability of non-privileged users to grant other users direct access to the contents of their home directories/folders. | |
| SRG-OS-000480-GPOS-00232 | V2R1 | The operating system must enable an application firewall, if available. | |