with . If there already is a policy block that refers to password history, ensure it is set to "5". If the line "policyCategoryPasswordContent" is not present in the file, add the following text immediately after the opening tag in the file:
policyCategoryPasswordContent policyContent none policyAttributePasswordHashes in policyAttributePasswordHistory policyIdentifier Password History policyParameters policyAttributePasswordHistoryDepth 5
If the line "policyCategoryPasswordContent" is already present in the file, the following text should be added just after the opening tag that follows the line instead:
policyContent none policyAttributePasswordHashes in policyAttributePasswordHistory policyIdentifier Password History policyParameters policyAttributePasswordHistoryDepth 5
After saving the file and exiting to the command prompt, run the following command to load the new policy file:
Note: Updates to password restrictions must be thoroughly evaluated in a test environment. Mistakes in configuration may block password change and local user creation operations, as well as lock out all local users, including administrators.