Check: GEN000980
VMware ESX 3 Server:
GEN000980
(in version v1 r2)
Title
The system must prevent the root account from directly logging in except from the system console. (Cat II impact)
Discussion
Limiting the root account direct logins to only system consoles protects the root account from direct unauthorized access from a non-console device.
Check Content
Verify the system only allows root account logins from the system console.
Fix Text
Configure the system to only allow root logins from the system console.
Additional Identifiers
Rule ID: SV-778r2_rule
Vulnerability ID: V-778
Group Title: GEN000980
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
Number | Definition |
---|---|
CCI-000770 |
The organization requires individuals to be authenticated with an individual authenticator when a group authenticator is employed. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
Number | Title |
---|---|
IA-2 (5) |
Group Authentication |