561 B
561 B
The STIG requires SHA512 to be used for hashing password since it is in the list of FIPS 140-2 approved hashing algorithms. This is also the default in Ubuntu 14.04.
The Ansible tasks will verify that the secure default is still set in the system's PAM configuration. If it has been altered, the playbook will fail and display an error.
Further reading: