Veritas NetBackup™ Appliance Security Guide
- About the NetBackup appliance Security Guide
- User authentication
- User authorization
- Intrusion prevention and intrusion detection systems
- Log files
- Operating system security
- Data security
- Web security
- Network security
- Call Home security
- IPMI security
- STIG compliance
- Appendix A. Security release content
About STIG compliant password policy rules
To comply with the Security Technical Implementation Guides (STIGs), NetBackup appliances automatically enforce a higher security password policy when the STIG option is enabled.
After the STIG option is enabled, all current user passwords created under the default policy remain valid. Once you are ready to change any user passwords, the STIG compliant policy rules must be followed.
The following describes the STIG compliant password policy rules:
Minimum characters: 15
Minimum numbers: 1
Minimum lowercase characters: 1
Minimum uppercase characters: 1
Minimum special characters: 1
Maximum consecutive repeating characters: 2
Maximum consecutive repeating characters of the same class: 4
Minimum number of different characters: 8
Minimum days for password change: 1
Maximum days for password change: 60
Dictionary words are not valid or accepted.
The last seven passwords cannot be reused