Addressable: Procedures for creating, changing, and safeguarding passwords |
It is critical to have strong passwords that are properly maintained by regularly changing them and protecting them in authentication systems.
This Action1 query checks currently enabled password policy settings to make sure they provide adequate password security. Such as it checks what is the configured minimum password length, password expiration, password history and other settings. The endpoints that do not match the minimum established requirements are flagged as non-compliant so you can reconfigure their settings accordingly.
Sign-up for Action1 Free Edition to streamline compliance efforts for your network of endpoints. Such as you can simplify assessments of 164.308 (a)(5)(ii)(D) Security Awareness and Training: Password Management for your internal or external auditors, create instant or regular compliance reports that prove your compliance while reducing the costs. Action1 Endpoint Security Platform is entirely SaaS, with online web interface (no management tools to install) and it has zero cost for basic functionality. Running in the Cloud, Action1 discovers all of your endpoints within seconds and allows you to pass compliance audits and maintain continuous compliance with ease.
Respond to Threatsin Real-Time
Ask questions in plain English such as "list of installed software" or "all running processes".
Get answers instantly from live systems or subscribe to real-time alerts.
Related Alerts and Reports:
164.308 (a)(1)(ii)(A) Security Management: Risk Analysis
Required: Assessment of risks and vulnerabilities of ePHI
164.308 (a)(1)(ii)(D) Security Management: Information System Activity Review
Required: Regular reviews of audit logs and other tracking information
164.308 (a)(3)(ii)(C) Workforce Security: Termination Procedures
Addressable: Making sure that proper employee termination procedures are followed
164.308 (a)(4)(ii)(B) Information Access Management: Access Authorization
Addressable: Verifying that access granting policies and procedures are in place
164.308 (a)(4)(ii)(C): Information Access Management: Access Establishment and Modification
Addressable: Granting and changing access to workstation and other components
164.308 (a)(5)(ii)(B) Security Awareness and Training: Protection from Malicious Software
Addressable: Procedures for guarding against, detecting, and reporting malicious software
164.308 (a)(5)(ii)(C) Security Awareness and Training: Log-in Monitoring
Addressable: Procedures for monitoring log-in attempts and reporting discrepancies
Keywords: Addressable: Procedures for creating, changing, and safeguarding passwords,Action1 164.308 (a)(5)(ii)(D) Security Awareness and Training: Password Management.
Find more information on 164.308 (a)(5)(ii)(D) Security Awareness and Training: Password Management at Microsoft TechNet.