USNS MONTFORD POINT - Findings

Showing 1 unique vulnerabilities (1 total) (filtered) View Documentation Status (90 tracked)

V-215831 CAT II The Cisco router must be configured to require that when a p...

1 asset 1 Closed Cisco IOS XE Router ...

Hostname	IP Address	Status	Assigned To	Last Scan	Actions
MONTPOINTGTWYRTR	10.10.10.1			2026-01-14
Finding Details Evaluate-STIG 1.2507.5 (Scan-CiscoXERouterNDM_Checks) found this to be NOT A FINDING on 10/23/2025 ResultHash: B24372278E11DB93CB56DA5D58F2C691579D30F4 ~~~~~ aaa common-criteria policy PASSWORD_POLICY char-changes 8 Comments

Check Text

Review the Cisco router configuration to verify that it is compliant with this requirement as shown in the example below. aaa new-model ! ! aaa common-criteria policy PASSWORD_POLICY char-changes 8 If the Cisco router is not configured to require that when a password is changed, the characters are changed in at least eight of the positions within the password, this is a finding.

Fix Text

Configure the Cisco router to enforce password complexity by requiring that when a password is changed, the characters are changed in at least eight of the positions within the password as shown in the example below. R1(config)#aaa common-criteria policy PASSWORD_POLICY R1(config-cc-policy)#char-changes 8 R1(config-cc-policy)#exit

Finding Details

Comments

Check Text

Fix Text