The Riverbed NetIM must enforce a minimum 15-character password length.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-275465 | RIIM-DM-000019 | SV-275465r1147445_rule | CCI-000205 | medium |
| Description | ||||
| Authorization is the process of determining whether an entity, once authenticated, is permitted to access a specific asset or set of resources. Information systems use access control policies and enforcement mechanisms to implement this requirement. Authorization procedures and controls must be implemented to ensure each authenticated entity also has a validated and current authorization. | ||||
| STIG | Date | |||
| Riverbed NetIM NDM Security Technical Implementation Guide | 2025-09-29 | |||
Details
Check Text (C-275465r1147445_chk)
Verify Password Rules is configured to use a 15-character password.
1. From the GUI, navigate to Configuration >> Configure >> All Settings >> Administer.
2. On the User Management screen, select "Password Rules".
3. View the Maximum Password Length box.
If a 15-character password is not required, this is a finding.
Fix Text (F-79472r1147444_fix)
Configure Password Rules to use a 15-character password.
1. From the GUI, navigate to Configuration >> Configure >> All Settings >> Administer.
2. On the User Management screen, select "Password Rules".
3. Check the Maximum Password Length box.
4. Enter "15" in the option box and click "Submit".