SRG-OS-000076-GPOS-00044 Controls

STIG IDVersionTitleProduct
ALMA-09-037970V1R4Passwords for existing users must have a 60-day maximum password lifetime restriction in /etc/shadow.AlmaLinux OS 9
ALMA-09-038080V1R4Passwords for new users or password changes must have a 60-day maximum password lifetime restriction in /etc/login.defs.AlmaLinux OS 9
APPL-13-003008V1R5The macOS system must enforce a 60-day maximum password lifetime restriction.macOS 13 - Ventura
APPL-14-003008V2R4The macOS system must restrict maximum password lifetime to 60 days.macOS 14 - Sonoma
APPL-15-003008V1R5The macOS system must restrict maximum password lifetime to 60 days.macOS 15 - Sequoia
OL07-00-010250V3R3The Oracle Linux operating system must be configured so that passwords for new users are restricted to a 60-day maximum lifetime.Oracle Linux 7
OL07-00-010260V3R3The Oracle Linux operating system must be configured so that existing passwords are restricted to a 60-day maximum lifetime.Oracle Linux 7
OL08-00-020200V2R6OL 8 user account passwords must have a 60-day maximum password lifetime restriction.Oracle Linux 8
OL08-00-020210V2R6OL 8 user account passwords must be configured so that existing passwords are restricted to a 60-day maximum lifetime.Oracle Linux 8
OL09-00-001095V1R3OL 9 user account passwords for new users or password changes must have a 60-day maximum password lifetime restriction in /etc/login.defs.Oracle Linux 9
OL09-00-001100V1R3OL 9 user account passwords must have a 60-day maximum password lifetime restriction.Oracle Linux 9
RHEL-07-010250V3R9The Red Hat Enterprise Linux operating system must be configured so that passwords for new users are restricted to a 60-day maximum lifetime.Red Hat Enterprise Linux 7
RHEL-07-010260V3R9The Red Hat Enterprise Linux operating system must be configured so that existing passwords are restricted to a 60-day maximum lifetime.Red Hat Enterprise Linux 7
RHEL-08-020200V2R5RHEL 8 user account passwords must have a 60-day maximum password lifetime restriction.Red Hat Enterprise Linux 8
RHEL-08-020210V2R5RHEL 8 user account passwords must be configured so that existing passwords are restricted to a 60-day maximum lifetime.Red Hat Enterprise Linux 8
RHEL-09-411010V2R6RHEL 9 user account passwords for new users or password changes must have a 60-day maximum password lifetime restriction in /etc/login.defs.Red Hat Enterprise Linux 9
RHEL-09-411015V2R6RHEL 9 user account passwords must have a 60-day maximum password lifetime restriction.Red Hat Enterprise Linux 9
SLES-12-010280V3R2The SUSE operating system must be configured to create or update passwords with a maximum lifetime of 60 days.SUSE Linux Enterprise 12
SLES-12-010290V3R2The SUSE operating system must employ user passwords with a maximum lifetime of 60 days.SUSE Linux Enterprise 12
SLES-15-020220V2R4The SUSE operating system must be configured to create or update passwords with a maximum lifetime of 60 days.SUSE Linux Enterprise 15
SLES-15-020230V2R4The SUSE operating system must employ user passwords with a maximum lifetime of 60 days.SUSE Linux Enterprise 15
TOSS-04-040120V2R3TOSS must enforce a 60-day maximum password lifetime restriction.Tri-Lab Operating System Stack
UBTU-18-010107V2R15The Ubuntu operating system must enforce a 60-day maximum password lifetime restriction. Passwords for new users must have a 60-day maximum password lifetime restriction.Ubuntu 18.04
UBTU-20-010008V2R3The Ubuntu operating system must enforce a 60-day maximum password lifetime restriction. Passwords for new users must have a 60-day maximum password lifetime restriction.Ubuntu 20.04
UBTU-22-411030V2R6Ubuntu 22.04 LTS must enforce a 60-day maximum password lifetime restriction. Passwords for new users must have a 60-day maximum password lifetime restriction.Ubuntu 22.04
UBTU-24-400310V1R1Ubuntu 24.04 LTS must enforce a 60-day maximum password lifetime restriction. Passwords for new users must have a 60-day maximum password lifetime restriction.Ubuntu 24.04
WN10-00-000090V3R4Accounts must be configured to require password expiration.Microsoft Windows 10
WN10-AC-000025V3R4The maximum password age must be configured to 60 days or less.Microsoft Windows 10
WN10-SO-000280V3R4Passwords for enabled local Administrator accounts must be changed at least every 60 days.Microsoft Windows 10
WN11-00-000090V2R5Accounts must be configured to require password expiration.Microsoft Windows 11
WN11-AC-000025V2R5The maximum password age must be configured to 60 days or less.Microsoft Windows 11
WN11-SO-000280V2R5Passwords for enabled local Administrator accounts must be changed at least every 60 days.Microsoft Windows 11
WN16-00-000030V2R9Passwords for the built-in Administrator account must be changed at least every 60 days.Microsoft Windows Server 2016
WN16-00-000230V2R9Passwords must be configured to expire.Microsoft Windows Server 2016
WN16-AC-000050V2R9Windows Server 2016 maximum password age must be configured to 60 days or less.Microsoft Windows Server 2016
WN19-00-000020V3R6Windows Server 2019 passwords for the built-in Administrator account must be changed at least every 60 days.Microsoft Windows Server 2019
WN19-00-000210V3R6Windows Server 2019 passwords must be configured to expire.Microsoft Windows Server 2019
WN19-AC-000050V3R6Windows Server 2019 maximum password age must be configured to 60 days or less.Microsoft Windows Server 2019
WN22-00-000020V2R6Windows Server 2022 passwords for the built-in Administrator account must be changed at least every 60 days.Microsoft Windows Server 2022
WN22-00-000210V2R6Windows Server 2022 passwords must be configured to expire.Microsoft Windows Server 2022
WN22-AC-000050V2R6Windows Server 2022 maximum password age must be configured to 60 days or less.Microsoft Windows Server 2022
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.