Set Maximum password age to expire passwords between 60 and 90 days.This setting will help mitigate vulnerabilities that are caused by password reuse.
User-specified number from 0 through 24.If you don't also set Minimum password age, users can change their password as many times in a row as necessary to reuse their original password. Specifying a low number for Enforce password history allows users to continually use the same small number of passwords repeatedly. If users are required to change their password, but they can reuse an old password, the effectiveness of a good password policy is greatly reduced. The longer the same password is used for a particular account, the greater the chance that an attacker will be able to determine the password through brute force attacks. Many users want to reuse the same password for their account over a long period of time. Password reuse is an important concern in any organization. The Enforce password history policy setting determines the number of unique new passwords that must be associated with a user account before an old password can be reused. Describes the best practices, location, values, policy management, and security considerations for the Enforce password history security policy setting.
0 kommentar(er)
