Details
Force users to change password at first login after their password was changed using the command set user password or from the WebUI User Management > Users page.
Rationale:
This forces the user to change the password and not to use the password set by the Administrator.
Solution
Run the following command to set force-change-when setting.
CLI:
Hostname>set password-controls force-change-when password
GUI:
Navigate to User Management > Password Policy > Mandatory Password Change:
Checked the ‘Force users to change password at first login after password was changed from Users page’ setting.
Default Value:
Not Selected
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Identification and Authentication.This control applies to the following type of system CheckPoint.