SRG-OS-000072-GPOS-00040 Controls

STIG IDVersionTitleProduct
ALMA-09-036760V1R4AlmaLinux OS 9 must require the change of at least four character classes when passwords are changed.AlmaLinux OS 9
ALMA-09-036870V1R4AlmaLinux OS 9 must require the maximum number of repeating characters be limited to three when passwords are changed.AlmaLinux OS 9
ALMA-09-036980V1R4AlmaLinux OS 9 must require the maximum number of repeating characters of the same character class be limited to four when passwords are changed.AlmaLinux OS 9
ALMA-09-037090V1R4AlmaLinux OS 9 must require the change of at least eight characters when passwords are changed.AlmaLinux OS 9
OL07-00-010160V3R3The Oracle Linux operating system must be configured so that when passwords are changed a minimum of eight of the total number of characters must be changed.Oracle Linux 7
OL07-00-010170V3R3The Oracle Linux operating system must be configured so that when passwords are changed a minimum of four character classes must be changed.Oracle Linux 7
OL07-00-010180V3R3The Oracle Linux operating system must be configured so that when passwords are changed the number of repeating consecutive characters must not be more than three characters.Oracle Linux 7
OL07-00-010190V3R3The Oracle Linux operating system must be configured so that when passwords are changed the number of repeating characters of the same character class must not be more than four characters.Oracle Linux 7
OL08-00-020140V2R6OL 8 must require the maximum number of repeating characters of the same character class be limited to four when passwords are changed.Oracle Linux 8
OL08-00-020150V2R6OL 8 must require the maximum number of repeating characters be limited to three when passwords are changed.Oracle Linux 8
OL08-00-020160V2R6OL 8 must require the change of at least four character classes when passwords are changed.Oracle Linux 8
OL08-00-020170V2R6OL 8 must require the change of at least eight characters when passwords are changed.Oracle Linux 8
OL09-00-001025V1R3OL 9 must require the change of at least eight characters when passwords are changed.Oracle Linux 9
OL09-00-001030V1R3OL 9 must require the maximum number of repeating characters of the same character class be limited to four when passwords are changed.Oracle Linux 9
OL09-00-001035V1R3OL 9 must require the maximum number of repeating characters be limited to three when passwords are changed.Oracle Linux 9
OL09-00-001040V1R3OL 9 must require the change of at least four character classes when passwords are changed.Oracle Linux 9
OL09-00-001045V1R3OL 9 must enforce password complexity rules for the root account.Oracle Linux 9
RHEL-07-010160V3R9The Red Hat Enterprise Linux operating system must be configured so that when passwords are changed a minimum of eight of the total number of characters must be changed.Red Hat Enterprise Linux 7
RHEL-07-010170V3R9The Red Hat Enterprise Linux operating system must be configured so that when passwords are changed a minimum of four character classes must be changed.Red Hat Enterprise Linux 7
RHEL-07-010180V3R9The Red Hat Enterprise Linux operating system must be configured so that when passwords are changed the number of repeating consecutive characters must not be more than three characters.Red Hat Enterprise Linux 7
RHEL-07-010190V3R9The Red Hat Enterprise Linux operating system must be configured so that when passwords are changed the number of repeating characters of the same character class must not be more than four characters.Red Hat Enterprise Linux 7
RHEL-08-020140V2R5RHEL 8 must require the maximum number of repeating characters of the same character class be limited to four when passwords are changed.Red Hat Enterprise Linux 8
RHEL-08-020150V2R5RHEL 8 must require the maximum number of repeating characters be limited to three when passwords are changed.Red Hat Enterprise Linux 8
RHEL-08-020160V2R5RHEL 8 must require the change of at least four character classes when passwords are changed.Red Hat Enterprise Linux 8
RHEL-08-020170V2R5RHEL 8 must require the change of at least 8 characters when passwords are changed.Red Hat Enterprise Linux 8
RHEL-09-611060V2R6RHEL 9 must enforce password complexity rules for the root account.Red Hat Enterprise Linux 9
RHEL-09-611115V2R6RHEL 9 must require the change of at least eight characters when passwords are changed.Red Hat Enterprise Linux 9
RHEL-09-611120V2R6RHEL 9 must require the maximum number of repeating characters of the same character class be limited to four when passwords are changed.Red Hat Enterprise Linux 9
RHEL-09-611125V2R6RHEL 9 must require the maximum number of repeating characters be limited to three when passwords are changed.Red Hat Enterprise Linux 9
RHEL-09-611130V2R6RHEL 9 must require the change of at least four character classes when passwords are changed.Red Hat Enterprise Linux 9
SLES-12-010190V3R2The SUSE operating system must require the change of at least eight (8) of the total number of characters when passwords are changed.SUSE Linux Enterprise 12
SLES-15-020160V2R4The SUSE operating system must require the change of at least eight of the total number of characters when passwords are changed.SUSE Linux Enterprise 15
TOSS-04-040080V2R3TOSS must require the change of at least eight characters when passwords are changed.Tri-Lab Operating System Stack
UBTU-18-010103V2R15The Ubuntu operating system must require the change of at least 8 characters when passwords are changed.Ubuntu 18.04
UBTU-20-010053V2R3The Ubuntu operating system must require the change of at least 8 characters when passwords are changed.Ubuntu 20.04
UBTU-22-611040V2R6Ubuntu 22.04 LTS must require the change of at least eight characters when passwords are changed.Ubuntu 22.04
UBTU-24-400290V1R1Ubuntu 24.04 LTS must require the change of at least eight characters when passwords are changed.Ubuntu 24.04
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.