[j-nsp] Forced password resets?
Julien Goodwin
jgoodwin at studio442.com.au
Thu Apr 19 03:54:01 EDT 2018
"To help ensure your trust and security on www.juniper.net, we are
asking all our users to change their passwords every 180 days"
This is considered to not be good practice[1], and as this is new, makes
me wonder whether something has happened that Juniper don't want to
admit to yet.
A general requirement that accounts will be deactivated if they aren't
used at least every six months is fairly understandable, but forcing a
password change with it isn't.
1: Random point:
https://www.ncsc.gov.uk/articles/problems-forcing-regular-password-expiry
More information about the juniper-nsp
mailing list