Symantec Privileged Access Management

 View Only
  • 1.  CA ControlMinder Password Policy

    Posted Dec 05, 2017 07:20 AM

    Hello Team,


    We want to apply password policy on the Unix based servers. Can we achieve below with seos:


    1) "Password must not contain:
    Password must not contain:userID or CommonName (CN)
    o Display Name
    o Full Name
    o Given Name
    o Surname"

    2) Accounts must be disabled (locked out) after five (5) unsuccessful authentication attempts (lockout threshold) for a period of 15 minutes (lockout duration). Lockout duration and lockout threshold could differ in certain situations such as remote access. Where they differ, the values must be specified in the control review for the information system and must not be less restrictive than the requirements set above. If this functionality is not provided by the operating system, an acceptable compensating control is disconnecting the session after the unsuccessful access attempts.


    Any help would be appreciated. 



  • 2.  Re: CA ControlMinder Password Policy
    Best Answer

    Broadcom Employee
    Posted Dec 08, 2017 08:27 AM