3.5.9: Allow temporary password use for system logons with an immediate change to a permanent password
Control Family:
Control Type:
Derived
CSF v1.1 References:
Discussion
Changing temporary passwords to permanent passwords immediately after system logon ensures that the necessary strength of the authentication mechanism is implemented at the earliest opportunity, reducing the susceptibility to authenticator compromises.