Skip to main content

Define lifespan for temporary passwords

Summary​

Temporary passwords for first system login must have a maximum lifespan of 120 minutes.

Description​

Temporary passwordsare often harder to remember and shared over systems whose future integrity may not be guaranteed by the system that created them. Therefore, the system must discard them or make them unusable after 120 minutes.

Supported In​

This requirement is verified in following services:

PlanSupported
Machine🟢
Squad🟢
One-Shot🟢

References​

Vulnerabilities​