Authentication

Password policy does not require uppercase letter

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Password Policy is the set of rules that defines the password a RAM user can choose. A weak password enlarges the chances to steal the credentials of a RAM user using methodologies such as Brute Force attacks. The cloud account {CloudAccount} was found to have too weak policy.
  • Recommended Mitigation

    Review the password policy and require at least one uppercase letter.