Documentation for Open Vulnerability and Assessment Language (OVAL®)
Definition Type: Element
Name: passwordpolicy_state
Namespace: http://oval.mitre.org/XMLSchema/oval-definitions-5#windows
Type: oval-def:StateType
Containing Schema: windows-definitions-schema.xsd
Abstract
Documentation:
The passwordpolicy_state element specifies the various policies associated with passwords. A password policy test will reference a specific instance of this state that defines the exact settings that need to be evaluated.
Collapse XSD Schema Diagram:
Drilldown into reversible_encryption in schema windows-definitions-schema_xsd Drilldown into password_complexity in schema windows-definitions-schema_xsd Drilldown into password_hist_len in schema windows-definitions-schema_xsd Drilldown into min_passwd_len in schema windows-definitions-schema_xsd Drilldown into min_passwd_age in schema windows-definitions-schema_xsd Drilldown into max_passwd_age in schema windows-definitions-schema_xsd Drilldown into notes in schema oval-definitions-schema_xsd Drilldown into Signature in schema xmldsig-core-schema_xsd Drilldown into deprecated in schema oval-definitions-schema_xsd Drilldown into comment in schema oval-definitions-schema_xsd Drilldown into operator in schema oval-definitions-schema_xsd Drilldown into version in schema oval-definitions-schema_xsd Drilldown into id in schema oval-definitions-schema_xsd Drilldown into StateType in schema oval-definitions-schema_xsdXSD Diagram of passwordpolicy_state in schema windows-definitions-schema_xsd (Open Vulnerability and Assessment Language (OVAL®))
Collapse XSD Schema Code: 
<xsd:element name="passwordpolicy_state" substitutionGroup="oval-def:state">
    <xsd:annotation>
        <xsd:documentation>The passwordpolicy_state element specifies the various policies associated with passwords. A password policy test will reference a specific instance of this state that defines the exact settings that need to be evaluated.</xsd:documentation>
    </xsd:annotation>
    <xsd:complexType>
        <xsd:complexContent>
            <xsd:extension base="oval-def:StateType">
                <xsd:sequence>
                    <xsd:element name="max_passwd_age" type="oval-def:EntityStateIntType" minOccurs="0">
                        <xsd:annotation>
                            <xsd:documentation>Specifies, in seconds, the maximum allowable password age. A value of TIMEQ_FOREVER (-1) indicates that the password never expires. The minimum valid value for this element is ONE_DAY (86400).</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="ppstemax_passwd_age" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="win-def:passwordpolicy_state/win-def:max_passwd_age">
                                        <sch:assert test="@datatype='int'">
                                            <sch:value-of select="../@id" /> - datatype attribute for the max_passwd_age entity of a passwordpolicy_state should be 'int'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="min_passwd_age" type="oval-def:EntityStateIntType" minOccurs="0">
                        <xsd:annotation>
                            <xsd:documentation>Specifies the minimum number of seconds that can elapse between the time a password changes and when it can be changed again. A value of zero indicates that no delay is required between password updates.</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="ppstemin_passwd_age" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="win-def:passwordpolicy_state/win-def:min_passwd_age">
                                        <sch:assert test="@datatype='int'">
                                            <sch:value-of select="../@id" /> - datatype attribute for the min_passwd_age entity of a passwordpolicy_state should be 'int'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="min_passwd_len" type="oval-def:EntityStateIntType" minOccurs="0">
                        <xsd:annotation>
                            <xsd:documentation>Specifies the minimum allowable password length. Valid values for this element are zero through PWLEN.</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="ppstemin_passwd_len" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="win-def:passwordpolicy_state/win-def:min_passwd_len">
                                        <sch:assert test="@datatype='int'">
                                            <sch:value-of select="../@id" /> - datatype attribute for the min_passwd_len entity of a passwordpolicy_state should be 'int'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="password_hist_len" type="oval-def:EntityStateIntType" minOccurs="0">
                        <xsd:annotation>
                            <xsd:documentation>Specifies the length of password history maintained. A new password cannot match any of the previous usrmod0_password_hist_len passwords. Valid values for this element are zero through DEF_MAX_PWHIST.</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="ppstepassword_hist_len" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="win-def:passwordpolicy_state/win-def:password_hist_len">
                                        <sch:assert test="@datatype='int'">
                                            <sch:value-of select="../@id" /> - datatype attribute for the password_hist_len entity of a passwordpolicy_state should be 'int'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="password_complexity" type="oval-def:EntityStateBoolType" minOccurs="0">
                        <xsd:annotation>
                            <xsd:documentation>A boolean value that signifies whether passwords must meet the complexity requirements put forth by the operating system.</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="ppstepassword_complexity" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="win-def:passwordpolicy_state/win-def:password_complexity">
                                        <sch:assert test="@datatype='boolean'">
                                            <sch:value-of select="../@id" /> - datatype attribute for the password_complexity entity of an passwordpolicy_state should be 'boolean'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="reversible_encryption" type="oval-def:EntityStateBoolType" minOccurs="0">
                        <xsd:annotation>
                            <xsd:documentation>Determines whether Windows 2000 Server, Windows 2000 Professional, and Windows XP Professional store passwords using reversible encryption.</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="ppstereversible_encryption" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="win-def:passwordpolicy_state/win-def:reversible_encryption">
                                        <sch:assert test="@datatype='boolean'">
                                            <sch:value-of select="../@id" /> - datatype attribute for the reversible_encryption entity of an passwordpolicy_state should be 'boolean'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                </xsd:sequence>
            </xsd:extension>
        </xsd:complexContent>
    </xsd:complexType>
</xsd:element>
Collapse Child Elements:
Name Type Min Occurs Max Occurs
Signature ds:Signature 0 1
notes oval-def:notes 0 1
max_passwd_age win-def:max_passwd_age 0 (1)
min_passwd_age win-def:min_passwd_age 0 (1)
min_passwd_len win-def:min_passwd_len 0 (1)
password_hist_len win-def:password_hist_len 0 (1)
password_complexity win-def:password_complexity 0 (1)
reversible_encryption win-def:reversible_encryption 0 (1)
Collapse Child Attributes:
Name Type Default Value Use
id oval-def:id Required
version oval-def:version Required
operator oval-def:operator AND Optional
comment oval-def:comment Optional
deprecated oval-def:deprecated false Optional
Collapse Derivation Tree:
Collapse References:
oval-def:state
Documentation for Open Vulnerability and Assessment Language (OVAL®)

Generated using Liquid Studio - Developer Bundle 21.0.0.0