| AZLX-23-002355 | V1R2 | Amazon Linux 2023 must enforce password complexity by requiring that at least one uppercase character be used. | Amazon Linux 2023 |
| AZLX-23-002489 | V1R2 | Amazon Linux 2023 must ensure the password complexity module is enabled in the password-auth file. | Amazon Linux 2023 |
| ALMA-09-035880 | V1R5 | AlmaLinux OS 9 must ensure the password complexity module is enabled in the password-auth file. | AlmaLinux OS 9 |
| ALMA-09-035990 | V1R5 | AlmaLinux OS 9 must ensure the password complexity module in the system-auth file is configured for three retries or less. | AlmaLinux OS 9 |
| ALMA-09-036100 | V1R5 | AlmaLinux OS 9 must enforce password complexity rules for the root account. | AlmaLinux OS 9 |
| ALMA-09-036210 | V1R5 | AlmaLinux OS 9 must enforce password complexity by requiring that at least one uppercase character be used. | AlmaLinux OS 9 |
| APPL-14-003060 | V2R4 | The macOS system must require passwords contain a minimum of one lowercase character and one uppercase character. | macOS 14 - Sonoma |
| APPL-15-003060 | V1R6 | The macOS system must require that passwords contain a minimum of one lowercase character and one uppercase character. | macOS 15 - Sequoia |
| OL07-00-010118 | V3R5 | The Oracle Linux operating system must be configured so that /etc/pam.d/passwd implements /etc/pam.d/system-auth when changing passwords. | Oracle Linux 7 |
| OL07-00-010119 | V3R5 | The Oracle Linux operating system must be configured so that when passwords are changed or new passwords are established, pwquality must be used. | Oracle Linux 7 |
| OL07-00-010120 | V3R5 | The Oracle Linux operating system must be configured so that when passwords are changed or new passwords are established, the new password must contain at least one upper-case character. | Oracle Linux 7 |
| OL08-00-020100 | V2R7 | OL 8 must ensure the password complexity module is enabled in the password-auth file. | Oracle Linux 8 |
| OL08-00-020110 | V2R7 | OL 8 must enforce password complexity by requiring that at least one uppercase character be used. | Oracle Linux 8 |
| OL09-00-001001 | V1R4 | OL 9 must ensure the password complexity module in the system-auth file is configured for three retries or less. | Oracle Linux 9 |
| OL09-00-001005 | V1R4 | OL 9 must enforce password complexity by requiring that at least one uppercase character be used. | Oracle Linux 9 |
| OL09-00-001010 | V1R4 | OL 9 must ensure the password complexity module is enabled in the password-auth file. | Oracle Linux 9 |
| RHEL-07-010118 | V3R9 | The Red Hat Enterprise Linux operating system must be configured so that /etc/pam.d/passwd implements /etc/pam.d/system-auth when changing passwords. | Red Hat Enterprise Linux 7 |
| RHEL-07-010119 | V3R9 | The Red Hat Enterprise Linux operating system must be configured so that when passwords are changed or new passwords are established, pwquality must be used. | Red Hat Enterprise Linux 7 |
| RHEL-07-010120 | V3R9 | The Red Hat Enterprise Linux operating system must be configured so that when passwords are changed or new passwords are established, the new password must contain at least one upper-case character. | Red Hat Enterprise Linux 7 |
| RHEL-08-020100 | V2R6 | RHEL 8 must ensure the password complexity module is enabled in the password-auth file. | Red Hat Enterprise Linux 8 |
| RHEL-08-020110 | V2R6 | RHEL 8 must enforce password complexity by requiring that at least one uppercase character be used. | Red Hat Enterprise Linux 8 |
| RHEL-09-611010 | V2R7 | RHEL 9 must ensure the password complexity module in the system-auth file is configured for three retries or less. | Red Hat Enterprise Linux 9 |
| RHEL-09-611040 | V2R7 | RHEL 9 must ensure the password complexity module is enabled in the password-auth file. | Red Hat Enterprise Linux 9 |
| RHEL-09-611110 | V2R7 | RHEL 9 must enforce password complexity by requiring that at least one uppercase character be used. | Red Hat Enterprise Linux 9 |
| SLES-12-010150 | V3R4 | The SUSE operating system must enforce passwords that contain at least one upper-case character. | SUSE Linux Enterprise 12 |
| SLES-15-020130 | V2R4 | The SUSE operating system must enforce passwords that contain at least one uppercase character. | SUSE Linux Enterprise 15 |
| TOSS-04-040050 | V2R3 | TOSS must enforce password complexity by requiring that at least one uppercase character be used. | Tri-Lab Operating System Stack |
| UBTU-18-010100 | V2R15 | The Ubuntu operating system must enforce password complexity by requiring that at least one upper-case character be used. | Ubuntu 18.04 |
| UBTU-20-010050 | V2R3 | The Ubuntu operating system must enforce password complexity by requiring that at least one upper-case character be used. | Ubuntu 20.04 |
| UBTU-22-611010 | V2R7 | Ubuntu 22.04 LTS must enforce password complexity by requiring at least one uppercase character be used. | Ubuntu 22.04 |
| UBTU-24-400260 | V1R1 | Ubuntu 24.04 LTS must enforce password complexity by requiring that at least one uppercase character be used. | Ubuntu 24.04 |
| WN10-AC-000040 | V3R6 | The built-in Microsoft password complexity filter must be enabled. | Microsoft Windows 10 |
| WN11-AC-000040 | V2R5 | The built-in Microsoft password complexity filter must be enabled. | Microsoft Windows 11 |
| WN16-AC-000080 | V2R9 | Windows Server 2016 must have the built-in Windows password complexity policy enabled. | Microsoft Windows Server 2016 |
| WN19-AC-000080 | V3R7 | Windows Server 2019 must have the built-in Windows password complexity policy enabled. | Microsoft Windows Server 2019 |
| WN22-AC-000080 | V2R7 | Windows Server 2022 must have the built-in Windows password complexity policy enabled. | Microsoft Windows Server 2022 |