STIGhubSTIGhub
STIGhub— A free STIG search and compliance tool·STIGs updated 2 hours ago
Powered by Pylon·Privacy·Terms·Feedback·© 2026 Beacon Cloud Solutions, Inc.
← Back to Ivanti Policy Secure NDM Security Technical Implementation Guide

V-284528

CAT II (Medium)

The Ivanti Policy Secure must require that when a password is changed, the characters are changed in at least eight of the positions within the password.

Rule ID

SV-284528r1244934_rule

STIG

Ivanti Policy Secure NDM Security Technical Implementation Guide

Version

V1R1

CCIs

CCI-004066

Discussion

Password complexity is one factor of several that determines how long it takes to crack a password. The more complex the password, the greater the number of possible combinations that need to be tested before the password is compromised.

Check Content

In the Web UI, navigate to Authentication >> Auth Servers >> Administrators.

If the setting for "new password must differ from the previous password position" and the value of "new password must differ from the previous password position" is not set to "8", this is a finding.

Fix Text

1. In the Web UI, navigate to Authentication >> Auth Servers >> Administrators.
2. Check the box for "new password must differ from the previous password position".
3. In the box, enter "8" or more.
4. Click "Save Changes".