6e761efc9c
Several tasks in the auth.yml file were actually more closely related to accounts rather than authentication. This patch moves tasks from the auth.yml into accounts.yml and adjusts the docs to match. This should alleviate confusion and allow deployers to fine-tune their Ansible playbook runs. Change-Id: I962014ba9022dd256dc04da6b4ac0860797fbc24
19 lines
447 B
ReStructuredText
19 lines
447 B
ReStructuredText
---
|
|
id: V-71925
|
|
status: opt-in
|
|
tag: accounts
|
|
---
|
|
|
|
Although the STIG requires that all passwords have a minimum lifetime set, this
|
|
can cause issue in some production environments. Therefore, deployers must opt
|
|
in for this change.
|
|
|
|
Set the following Ansible variable to an integer (in days) to enable this
|
|
setting:
|
|
|
|
.. code-block:: yaml
|
|
|
|
security_password_min_lifetime_days: 1
|
|
|
|
The STIG requires the minimum lifetime for password to be one day.
|