Tenable PCI ASV Password Requirements

Tenable PCI ASV enforces the following password requirements for all accounts:

Password Criteria

Passwords must be at least 12 characters long and contain the following:

• An uppercase letter

• A lowercase letter

• A number

• A special character

Password Expiration

Tenable PCI ASV passwords do not expire.

Account Lockout

By default, after 5 failed login attempts, Tenable PCI ASV locks the user out of their account. When a user is locked out of their account, they can unlock their own account, or an administrator can reset their password.

Password History

You cannot reuse a current or former password.