usnistgov/macos_security
1
0
Fork 0
mirror of https://github.com/usnistgov/macos_security.git synced 2026-02-03 14:03:24 +00:00
Code Issues 21 Actions Packages Projects Releases Wiki Activity

spacing and wording changes

Browse Source
This commit is contained in:
Bob Gendler
2020-10-05 14:40:28 -04:00
parent 10348059bf
commit 9759e8f365
2 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
sections/passwordpolicy.yaml
View File

@@ -4,9 +4,9 @@
NOTE: The check/fix commands outlined in this section _MUST_ be run by a user with elevated privileges.
NOTE: The settings outlined in this section adhere to the recommendations provided in this document for systems that utilize passwords for local accounts. If systems are integrated with a directory service, local password policies should align with domain password policies to the fullest extent feasible.
[IMPORTANT]
====
Until National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53 revision 5 is officially published, the password policy recommendations used to develop these rules fall under NIST SP 800-53 revision 4. NIST SP 800-53 revision 4 was released with the guidance published in NIST SP 800-63 at the time, however, NIST SP 800-63 has been revised a number of times since then. At this time, the recommendation is for organizations to adopt the newer published guidance defined in NIST SP 800-63.
====
The password policy recommendations used to develop these rules fall under the NIST SP 800-53 (Rev. 4), however the NIST SP 800-53 (Rev. 5) was released on September 23rd, 2020 with updated guidance on password policies.
====
NOTE: The settings outlined in this section adhere to the recommendations provided in this document for systems that utilize passwords for local accounts. If systems are integrated with a directory service, local password policies should align with domain password policies to the fullest extent feasible.