UCF STIG Viewer Logo

The system must require passwords to contain no more than three consecutive repeating characters.


Overview

Finding ID Version Rule ID IA Controls Severity
V-11975 GEN000680 SV-12476r2_rule IAIA-1 IAIA-2 Medium
Description
To enforce the use of complex passwords, the number of consecutive repeating characters is limited. Passwords with excessive repeated characters may be more vulnerable to password-guessing attacks.
STIG Date
VMware ESX 3 Server 2016-05-13

Details

Check Text ( C-7940r2_chk )
Verify the system requires passwords to contain no more than three consecutive repeating characters. If the system allows passwords to contain more than three consecutive repeating characters, this is a finding.
Fix Text (F-24392r1_fix)
Configure the system to require passwords to contain no more than three consecutive repeating characters.