STIGQter: STIG Summary: Oracle Linux 6 Security Technical Implementation Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The system must provide automated support for account management functions.

DISA Rule

SV-209067r603263_rule

Vulnerability Number

V-209067

Group Title

SRG-OS-000001

Rule Version

OL6-00-000524

Severity

CAT II

CCI(s)

• CCI-000015 - The organization employs automated mechanisms to support the information system account management functions.

Weight

10

Fix Recommendation

Implement an automated system for managing user accounts that minimizes the risk of errors, either intentional or deliberate. If possible, this system should integrate with an existing enterprise user management system, such as, one based Active Directory or Kerberos.

Check Contents

Interview the SA to determine if there is an automated system for managing user accounts, preferably integrated with an existing enterprise user management system.

If there is not, this is a finding.

Vulnerability Number

V-209067

Documentable

False

Rule Version

OL6-00-000524

Severity Override Guidance

Interview the SA to determine if there is an automated system for managing user accounts, preferably integrated with an existing enterprise user management system.

If there is not, this is a finding.

Check Content Reference

M

Target Key

2928

Comments