Documentation for Open Vulnerability and Assessment Language (OVAL®)
Definition Type: Element
Name: pwpolicy_item
Namespace: http://oval.mitre.org/XMLSchema/oval-system-characteristics-5#macos
Type: oval-sc:ItemType
Containing Schema: macos-system-characteristics-schema.xsd
Abstract
Documentation:
Output of 'pwpolicy -getpolicy'
Collapse XSD Schema Diagram:
Drilldown into requiresNumeric in schema macos-system-characteristics-schema_xsd Drilldown into requiresAlpha in schema macos-system-characteristics-schema_xsd Drilldown into passwordCannotBeName in schema macos-system-characteristics-schema_xsd Drilldown into minChars in schema macos-system-characteristics-schema_xsd Drilldown into maxFailedLoginAttempts in schema macos-system-characteristics-schema_xsd Drilldown into maxChars in schema macos-system-characteristics-schema_xsd Drilldown into directory_node in schema macos-system-characteristics-schema_xsd Drilldown into userpass in schema macos-system-characteristics-schema_xsd Drilldown into username in schema macos-system-characteristics-schema_xsd Drilldown into message in schema oval-system-characteristics-schema_xsd Drilldown into status in schema oval-system-characteristics-schema_xsd Drilldown into id in schema oval-system-characteristics-schema_xsd Drilldown into ItemType in schema oval-system-characteristics-schema_xsdXSD Diagram of pwpolicy_item in schema macos-system-characteristics-schema_xsd (Open Vulnerability and Assessment Language (OVAL®))
Collapse XSD Schema Code: 
<xsd:element name="pwpolicy_item" substitutionGroup="oval-sc:item">
    <xsd:annotation>
        <xsd:documentation>Output of 'pwpolicy -getpolicy'</xsd:documentation>
    </xsd:annotation>
    <xsd:complexType>
        <xsd:complexContent>
            <xsd:extension base="oval-sc:ItemType">
                <xsd:sequence>
                    <xsd:element name="username" type="oval-sc:EntityItemStringType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation />
                            <xsd:appinfo>
                                <sch:pattern id="pwpitemusername" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="macos-sc:pwpolicy_item/macos-sc:username">
                                        <sch:assert test="not(@datatype) or @datatype='string'">item <sch:value-of select="../@id" /> - datatype attribute for the username entity of a pwpolicy_item should be 'string'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="userpass" type="oval-sc:EntityItemStringType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation />
                            <xsd:appinfo>
                                <sch:pattern id="pwpitemuserpass" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="macos-sc:pwpolicy_item/macos-sc:userpass">
                                        <sch:assert test="not(@datatype) or @datatype='string'">item <sch:value-of select="../@id" /> - datatype attribute for the userpass entity of a pwpolicy_item should be 'string'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="directory_node" type="oval-sc:EntityItemStringType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation />
                            <xsd:appinfo>
                                <sch:pattern id="pwpitemdirectory_node" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="macos-sc:pwpolicy_item/macos-sc:directory_node">
                                        <sch:assert test="not(@datatype) or @datatype='string'">item <sch:value-of select="../@id" /> - datatype attribute for the directory_node entity of a pwpolicy_item should be 'string'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="maxChars" type="oval-sc:EntityItemIntType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation>Maximum number of characters allowed in a password.</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="pwpitemmaxChars" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="macos-sc:pwpolicy_item/macos-sc:maxChars">
                                        <sch:assert test="not(@datatype) or @datatype='int'">item <sch:value-of select="../@id" /> - datatype attribute for the maxChars entity of a pwpolicy_item should be 'int'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="maxFailedLoginAttempts" type="oval-sc:EntityItemIntType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation>Maximum number of failed logins before the account is locked.</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="pwpitemmaxFailedLoginAttempts" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="macos-sc:pwpolicy_item/macos-sc:maxFailedLoginAttempts">
                                        <sch:assert test="not(@datatype) or @datatype='int'">item <sch:value-of select="../@id" /> - datatype attribute for the maxFailedLoginAttempts entity of a pwpolicy_item should be 'int'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="minChars" type="oval-sc:EntityItemIntType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation>Minimum number of characters allowed in a password</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="pwpitemminChars" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="macos-sc:pwpolicy_item/macos-sc:minChars">
                                        <sch:assert test="not(@datatype) or @datatype='int'">item <sch:value-of select="../@id" /> - datatype attribute for the minChars entity of a pwpolicy_item should be 'int'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="passwordCannotBeName" type="oval-sc:EntityItemBoolType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation>Defines if the password is allowed to be the same as the username or not</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="pwpitempasswordCannotBeName" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="macos-sc:pwpolicy_item/macos-sc:passwordCannotBeName">
                                        <sch:assert test="not(@datatype) or @datatype='boolean'">item <sch:value-of select="../@id" /> - datatype attribute for the passwordCannotBeName entity of a pwpolicy_item should be 'boolean'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="requiresAlpha" type="oval-sc:EntityItemBoolType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation>Defines if the password must contain an alphabetical character or not</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="pwpitemrequiresAlpha" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="macos-sc:pwpolicy_item/macos-sc:requiresAlpha">
                                        <sch:assert test="not(@datatype) or @datatype='boolean'">item <sch:value-of select="../@id" /> - datatype attribute for the requiresAlpha entity of a pwpolicy_item should be 'boolean'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                    <xsd:element name="requiresNumeric" type="oval-sc:EntityItemBoolType" minOccurs="0" maxOccurs="1">
                        <xsd:annotation>
                            <xsd:documentation>Defines if the password must contain an numeric character or not</xsd:documentation>
                            <xsd:appinfo>
                                <sch:pattern id="pwpitemrequiresNumeric" xmlns:sch="http://purl.oclc.org/dsdl/schematron">
                                    <sch:rule context="macos-sc:pwpolicy_item/macos-sc:requiresNumeric">
                                        <sch:assert test="not(@datatype) or @datatype='boolean'">item <sch:value-of select="../@id" /> - datatype attribute for the requiresNumeric entity of a pwpolicy_item should be 'boolean'</sch:assert>
                                    </sch:rule>
                                </sch:pattern>
                            </xsd:appinfo>
                        </xsd:annotation>
                    </xsd:element>
                </xsd:sequence>
            </xsd:extension>
        </xsd:complexContent>
    </xsd:complexType>
</xsd:element>
Collapse Child Elements:
Name Type Min Occurs Max Occurs
message oval-sc:message 0 1
username macos-sc:username 0 1
userpass macos-sc:userpass 0 1
directory_node macos-sc:directory_node 0 1
maxChars macos-sc:maxChars 0 1
maxFailedLoginAttempts macos-sc:maxFailedLoginAttempts 0 1
minChars macos-sc:minChars 0 1
passwordCannotBeName macos-sc:passwordCannotBeName 0 1
requiresAlpha macos-sc:requiresAlpha 0 1
requiresNumeric macos-sc:requiresNumeric 0 1
Collapse Child Attributes:
Name Type Default Value Use
id oval-sc:id Required
status oval-sc:status exists Optional
Collapse Derivation Tree:
Collapse References:
oval-sc:item
Documentation for Open Vulnerability and Assessment Language (OVAL®)

Generated using Liquid Studio - Developer Bundle 21.0.0.0