SV-204409r603261_rule
V-204409
SRG-OS-000071-GPOS-00039
RHEL-07-010140
CAT II
10
Configure the operating system to enforce password complexity by requiring that at least one numeric character be used by setting the "dcredit" option.
Add the following line to /etc/security/pwquality.conf (or modify the line to have the required value):
dcredit = -1
Note: The value to require a number of numeric characters to be set is expressed as a negative number in "/etc/security/pwquality.conf".
Check the value for "dcredit" in "/etc/security/pwquality.conf" with the following command:
# grep dcredit /etc/security/pwquality.conf
dcredit = -1
If the value of "dcredit" is not set to a negative value, this is a finding.
V-204409
False
RHEL-07-010140
Note: The value to require a number of numeric characters to be set is expressed as a negative number in "/etc/security/pwquality.conf".
Check the value for "dcredit" in "/etc/security/pwquality.conf" with the following command:
# grep dcredit /etc/security/pwquality.conf
dcredit = -1
If the value of "dcredit" is not set to a negative value, this is a finding.
M
2899