Veritas NetBackup™ Flex Scale Administrator's Guide
- Product overview
- Viewing information about the NetBackup Flex Scale cluster environment
- NetBackup Flex Scale infrastructure management
- User management
- About Universal Shares
- Node and disk management
- License management
- User management
- NetBackup Flex Scale network management
- Bonding operations
- Data network configurations
- NetBackup Flex Scale infrastructure monitoring
- Resiliency in NetBackup Flex Scale
- EMS server configuration
- Site-based disaster recovery in NetBackup Flex Scale
- Performing disaster recovery using RESTful APIs
- NetBackup Flex Scale security
- Troubleshooting
- Collecting logs for cluster nodes
- Troubleshooting NetBackup Flex Scale issues
- Appendix A. Configuring NetBackup optimized duplication
- Appendix B. Disaster recovery terminologies
- Appendix C. Configuring Auto Image Replication
STIG-compliant password policy rules
To comply with the Security Technical Implementation Guide (STIG), NetBackup Flex Scale automatically enforces a higher security password policy when the STIG option is enabled. After the STIG option is enabled, all current user passwords that were created under the default policy remain valid. When you change any user passwords, the STIG-compliant policy rules must be followed.
The STIG-compliant password policy rules are listed below:
Password complexity
Minimum characters: 15
Minimum numbers: 1
Minimum lowercase characters: 1
Minimum uppercase characters: 1
Minimum special characters: 1
The permitted special characters are: ~!@#$%^&_+ - =[]{},.<>¦
Minimum character classes: 4
Maximum consecutive repeating characters: 2
Maximum consecutive repeating characters of the same type: 4
Minimum number of different characters: 8
No whitespaces.
Dictionary words are not allowed
Password age
Days after which a password expires: 60
Minimum days before a password can be changed: 1
Days before a password must be changed: 60
The previous seven passwords cannot be reused.
Password lockout
Number of incorrect login attempts before lockout: 3
Time before locked account is reenabled (seconds): 604800
Time between login failures before account lockout (seconds): 900