CMMC 1.0 Practice IA.2.079 Requirement:

Prohibit password reuse for a specified number of generations.

CMMC 1.0 IA.2.079 Requirement Explanation:

The reuse of passwords can greatly diminish the effectiveness of passwords.

Example CMMC 1.0 IA.2.079 Implementation:

Configure your user accounts not to accept passwords the reuse of passwords after a specified number of generations. For Windows systems this can be accomplished using group policy. Restricting the reuse of passwords for five generations is a common policy.

CMMC 1.0 IA.2.079 Scenario(s):

- Scenario 1:

John needs to set a new password for his account. He enters a password that he used earlier in the year. Because of his organization's password reuse policy he receives an error message and is forced to come up with a new password.
 

Quick & Simple

Discover Our Cybersecurity Compliance Solutions:

Whether you need to meet and maintain your compliance requirements, help your clients meet them, or verify supplier compliance we have the expertise and solution for you

 NIST SP 800-171 & CMMC Compliance App

NIST SP 800-171 & CMMC Compliance

Become compliant, provide compliance services, or verify partner compliance with NIST SP 800-171 and CMMC requirements.
 HIPAA Compliance App

HIPAA Compliance

Become compliant, provide compliance services, or verify partner compliance with HIPAA security rule requirements.
 FAR 52.204-21 Compliance App

FAR 52.204-21 Compliance

Become compliant, provide compliance services, or verify partner compliance with FAR 52.204-21 Basic Safeguarding of Covered Contractor Information Systems requirements.
 ISO 27001 Compliance App

ISO 27001 Compliance

Become compliant, provide compliance services, or verify partner compliance with ISO 27001 requirements.