The Omnissa WS1 UEM server must prohibit password reuse for a minimum of five generations.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-284350 | SRG-APP-000165-UEM-000095 | OMW1-00-011500 | SV-284350r1224093_rule | 2026-06-15 | 1 |
Description
Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute-force attacks.
To meet password policy requirements, passwords need to be changed at specific policy-based intervals.
If the information system or application allows the user to consecutively reuse their password when that password has exceeded its defined lifetime, the end result is a password that is not changed as per policy requirements.
Satisfies: FMT_SMF.1(2)b
Reference: PP-MDM-431025
ℹ️ Check
Authenticate to the Workspace ONE UEM console as an administrator.
Navigate to Groups & Settings >> All Settings >> Admin >> Console Security >> Passwords.
If "Enforced password history" is not set to "5 passwords remembered", this is a finding.
Note: If this procedure is not seen on the console, the Cloud Service Provider (CSP) is managing the setting. Contact the CSP to review the required setting.
✔️ Fix
Authenticate to the Workspace ONE UEM console as an administrator.
1. Navigate to Groups & Settings >> All Settings >> Admin >> Console Security >> Passwords.
2. Configure "Enforced password history" to "5 passwords remembered".
3. Click "Save".
Note: If this procedure is not seen on the console, the CSP is managing the setting. Contact the CSP to implement the required setting.