usnistgov/macos_security
1
0
Fork 0
mirror of https://github.com/usnistgov/macos_security.git synced 2026-03-05 09:31:58 +00:00
Code Issues 21 Actions Packages Projects Releases Wiki Activity
Files
339b337607dde86d4b6b67ddb41c75cc06933708
macos_security/sections/passwordpolicy.yaml
Bob Gendler 26ceea7eb5 Password policy note for 800-53r5 IA-5 and IA-5(1)
2021-06-30 15:19:33 -04:00

12 lines
890 B
YAML
Raw Blame History

name: "Password Policy"
description: |
This section contains the configuration and enforcement of settings pertaining to password policies in macOS.
NOTE: The check/fix commands outlined in this section _MUST_ be run by a user with elevated privileges.
[IMPORTANT]
====
The password policy recommendations in the NIST 800-53 (Rev 5) and NIST 800-63B state that complexity rules should be organizationally defined. The values defined are based off of common complexity values. But your organization may define its own password complexity rules.
====
NOTE: The settings outlined in this section adhere to the recommendations provided in this document for systems that utilize passwords for local accounts. If systems are integrated with a directory service, local password policies should align with domain password policies to the fullest extent feasible.
Reference in New Issue View Git Blame Copy Permalink