Update to Marine Corps Enterprise Network (MCEN) Password Policy
This MARADMIN updates the Marine Corps Enterprise Network (MCEN) password policy regarding account lockout duration after unsuccessful logon attempts. The policy changes the account lockout duration from "forever" to 60 minutes after three unsuccessful logon attempts, modifying the previous requirement established in MARADMIN 155/06.
Issued: December 6, 2006
1. PURPOSE. THE PURPOSE OF THIS MARADMIN IS TO UPDATE MARINE CORPS PASSWORD POLICY PROMULGATED BY MARADMIN 155/06 FOR ACCOUNT LOCKOUTDURATION SUBSEQUENT TO THREE UNSUCCESSFUL LOGON ATTEMPTS IN ACCORDANCE WITH REF C. 2. BACKGROUND. REFS A AND B DIRECT THAT AFTER THREE UNSUCCESSFUL LOGON ATTEMPTS, THE ACCOUNT LOCKOUT DURATION IS SET TO FOREVER REQUIRING THE ACCOUNT TO BE UNLOCKED BY A SYSTEM ADMINISTRATOR. REF C PERMITS THE REQUIREMENT TO BE CHANGED FROM FOREVER TO 60 MINUTES. 3. SCOPE. THIS POLICY APPLIES TO ALL USMC COMMANDS. 4. POLICY. EFFECTIVE IMMEDIATELY, MARADMIN 155/06 PARA 4D(5) IS MODIFIED AS FOLLOWS: PARA 4D(5). UNSUCCESSFUL LOGON ATTEMPT COUNTER SHALL BE SET TO 3 WITH A COUNTER RESET OF NO LESS THAN 60 MINUTES. THIS ALLOWS NO MORE THAN TWO UNSUCCESSFUL LOGON ATTEMPTS WITHIN A 60 MINUTE PERIOD. AFTER THE THIRD UNSUCCESSFUL LOGON ATTEMPT, THE ACCOUNT LOCKOUT DURATION IS SET TO "60 MINUTES". 5. COMMANDERS WILL ENSURE THE IMPLEMENTATION OF THIS POLICY WITHOUT DELAY AND ENSURE THE INCLUSION OF ITS CONTENT WITHIN RESIDENT INFORMATION ASSURANCE TRAINING. 6. TECHNICAL INQUIRIES SHOULD BE DIRECTED TO THE MCNOSC OPERATIONS CENTER AT DSN 278-5300, COMM 703-784-5300, OR UNCLASS E-MAIL: SMB USMC MCNOSC COMMAND CENTER@MCNOSC.USMC.MIL.