Secure Your Mac: Meet Cyber Essentials Password Standards

This guide will walk you through the steps to configure your Mac’s passwords to meet Cyber Essentials compliance standards.

Utilising the pwpolicy Tool

Apple provides a powerful command-line tool, “pwpolicy,” to manage password requirements on your Mac. This tool allows you to customise various aspects of password complexity, such as:

  • Minimum Password Length: Setting a minimum character count to deter brute-force attacks.
  • Sequential Character Restrictions: Preventing the use of consecutive characters (e.g., “12345678”).
  • Repeated Character Prevention: Disallowing passwords with repeated characters.

Avoiding Password Complexity Requirements

As advised by the National Cyber Security Centre (NCSC), enforcing strict password complexity rules can sometimes hinder users. Instead, focusing on increasing password length is a more effective approach.

Setting a Minimum Password Length

To enhance password security without imposing excessive complexity, execute the following command in your terminal:

sudo pwpolicy -a <authenticator> -setglobalpolicy “minChars=12”

Replace <authenticator> with your administrative username. This command sets the minimum password length to 12 characters.

Additional Considerations

  • While the above steps ensure basic Cyber Essentials compliance, it’s essential to refer to the NCSC’s Cyber Essentials Requirements for IT Infrastructure document for comprehensive guidance. This document provides valuable insights into:
  • Password Best Practices: The NCSC recommends using a combination of three random words as a memorable yet secure password strategy. This approach can help users create strong passwords without resorting to complex character combinations.
  • User Education: Encouraging users to adopt strong password habits, including avoiding easily guessable information.

Conclusion

By following these steps and adhering to the NCSC’s guidelines, you can significantly strengthen your Mac’s security and protect your valuable data from unauthorised access. Remember, a robust password is a crucial component of a comprehensive cyber security strategy.

We recommend also using our exclusive guide to passing Cyber Essentials first time, which comes free with our elevated GOLD and SILVER packages