Check: GEN000300
AIX 6.1 SECURITY TECHNICAL IMPLEMENTATION GUIDE:
GEN000300
(in versions v1 r14 through v1 r10)
Title
All accounts on the system must have unique user or account names. (Cat II impact)
Discussion
A unique user name is the first part of the identification and authentication process. If user names are not unique, there can be no accountability on the system for auditing purposes. Multiple accounts sharing the same name could result in the Denial of Service to one or both of the accounts or unauthorized access to files or privileges.
Check Content
Perform the following to ensure there are no duplicate account names: # usrck -n ALL If any duplicate account names are found, this is a finding.
Fix Text
Change user account names, or delete accounts, so each account has a unique name.
Additional Identifiers
Rule ID: SV-27064r1_rule
Vulnerability ID: V-761
Group Title: GEN000300
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000764 |
The information system uniquely identifies and authenticates organizational users (or processes acting on behalf of organizational users). |
Controls
Number | Title |
---|---|
IA-2 |
Identification And Authentication (Organizational Users) |