We oversee more than 30 firewalls through Central Firewall Management. Although a firewall policy has been applied universally, a problem arises with password complexity settings within the policy. Specifically, it restricts passwords to a range of 5 to 10 characters. While we can generate robust passwords independently, auditors may raise concerns during reviews as these do not meet the minimum requirements set by them.
Is there any reason the central policy restricts this when I can login to the firewall independently and changes it to 18?
[edited by: emmosophos at 8:27 PM (GMT -8) on 7 Dec 2023]