IBM Aspera Faspex must require password complexity features to be enabled.

An XCCDF Rule

Description

<VulnDiscussion>Use of a complex password helps to increase the time and resources required to compromise the password. Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute-force attacks.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-252583r818123_rule
Severity: Medium
References: CCI-000192 CCI-000193 CCI-000194 CCI-001620
Updated: over 1 year ago

Configure IBM Aspera Faspex to require password complexity: 

- Log in to the IBM Aspera Faspex web page as a user with administrative privilege. 
- Select the "Server" tab.
- Select the "Configuration" tab.
- Select the "Security" section.- Put a check the "Faspex accounts" "Use strong passwords" check box.
- Select "Update" at the bottom of the page.

IBM Aspera Faspex must require password complexity features to be enabled.

Description

Remediation - Manual Procedure