diff --git a/openstack/python-keystone/centos/files/password-rules.conf b/openstack/python-keystone/centos/files/password-rules.conf
index a110cd4b..e7ce6560 100644
--- a/openstack/python-keystone/centos/files/password-rules.conf
+++ b/openstack/python-keystone/centos/files/password-rules.conf
@@ -18,7 +18,7 @@
 # feature, values must be greater than 1. This feature depends on the `sql`
 # backend for the `[identity] driver`. (integer value)
 # Minimum value: 1
-unique_last_password_count = 2
+unique_last_password_count = 3
 
 # The regular expression used to validate password strength requirements. By
 # default, the regular expression will match any password. The following is an