Aqua CSPM

Password Requires Lowercase

Quick Info

Plugin TitlePassword Requires Lowercase
CloudORACLE
CategoryIdentity
DescriptionEnsures password policy requires at least one lowercase letter.
More InfoA strong password policy enforces minimum length, expiration, reuse, and symbol usage.
ORACLE Linkhttps://docs.cloud.oracle.com/iaas/Content/Identity/Tasks/managingpasswordrules.htm
Recommended ActionUpdate the password policy to require the use of lowercase letters.

Detailed Remediation Steps

  1. Log in to the Oracle Cloud Platform Console.
  2. Scroll down the left navigation panel and choose the “Identity” under the “Governance and Administration.”
  3. On the Identity menu, select the “Authentication” settings option.
  4. On the “Authentication Settings” page, click on the “Edit” button to check “Password requires lowercase” is enabled or not.
  5. On the “Edit Authentication Settings” page, make sure “Password requires lowercase” is enabled as per the best practices of Oracle cloud.
  6. Repeat steps number 2 - 5 to check other Oracle cloud accounts.
  7. Navigate to “Identity” under the “Governance and Administration” and select the “Authentication” settings to set the “Password requires lowercase”.
  8. Click on the “Edit” button to open the “Authentication” settings.
  9. On the “Edit Authentication Settings” page, click on the checkbox next to the “Password requires lowercase” and click on the “Save” button to make the changes.
  10. Repeat steps number 7 - 9 to update the password policy to require the use of lowercase letters.