Details
This setting prevents users from utilizing previously used passwords.
Rationale:
Users may attempt to reuse passwords which could lead to a compromised password being used. At least the past 5 passwords should be prevented from use for a user to ensure password re-use is not occurring.
Impact:
Users will be unable to use any of their past 5 passwords.
Solution
To set the password history 5, perform the following:
From the vSphere Web Client, select the host.
Click Configure then expand System.
Select Advanced System Settings then click Edit.
Enter Security.PasswordHistory in the filter.
Set the value for this parameter is set to 5.
Alternately, the following PowerCLI command may be used:
Get-VMHost | Get-AdvancedSetting Security.PasswordHistory | Set-AdvancedSetting -Value 5
Default Value:
None
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Identification and Authentication.This control applies to the following type of system VMware.