Back

Configure the "retry value" setting to organizational standards.


CONTROL ID
08798
CONTROL TYPE
Establish/Maintain Documentation
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Configure Red Hat Enterprise Linux to Organizational Standards., CC ID: 08713

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • The number of times a user is prompted to provide a new password if it fails to meet configured password strength requirements (also known as the retry value) should be set appropriately. Technical Mechanisms: (1) via pam_cracklib (2) via pam_passwdqc Parameters: number of retry attempts … (CCE-15054-0, Common Configuration Enumeration List, Combined XML: Red Hat Enterprise Linux 5, 5.20130214)