> On 20 Jul 2018, at 1:41 pm, Mike Reilly (GRC) via Public > <[email protected]> wrote: > > Hi Tim S. What the last point I made about the use of Just In Time (JIT) > admin where all CA access is done with a session password that is deleted > when the session ends. So we literally have passwords that last minutes. Once > the session ends the password is useless. That would be a CA policy > requiring the password to change based on it’s age, which would be measured > in minutes. Thanks, Mike
That wouldn’t be a ‘periodic’ change, because the password isn’t changed, it’s deleted, and because it only happens once.
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Public mailing list [email protected] https://cabforum.org/mailman/listinfo/public
