Check: NET0460
WLAN Controller STIG (STIG):
NET0460
(in versions v6 r15 through v6 r12)
Title
Group accounts must not be configured for use on the network device. (Cat I impact)
Discussion
Group accounts configured for use on a network device do not allow for accountability or repudiation of individuals using the shared account. If group accounts are not changed when someone leaves the group, that person could possibly gain control of the network device. Having group accounts does not allow for proper auditing of who is accessing or changing the network.
Check Content
Review the network device configuration and validate there are no group accounts configured for access. If a group account is configured on the device, this is a finding.
Fix Text
Configure individual user accounts for each authorized person then remove any group accounts.
Additional Identifiers
Rule ID: SV-3056r7_rule
Vulnerability ID: V-3056
Group Title: Group accounts are defined.
Expert Comments
CCIs
Number | Definition |
---|---|
No CCIs are assigned to this check |
Controls
Number | Title |
---|---|
No controls are assigned to this check |