STIGQter: STIG Summary: VMW vSphere 6.5 vCenter Server for Windows Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 22 Jan 2021:

The vCenter Server for Windows must limit the use of the built-in SSO administrative account.

DISA Rule

SV-216833r612237_rule

Vulnerability Number

V-216833

Group Title

SRG-APP-000153

Rule Version

VCWN-65-000010

Severity

CAT II

CCI(s)

• CCI-000770 - The organization requires individuals to be authenticated with an individual authenticator when a group authenticator is employed.

Weight

10

Fix Recommendation

A policy should be developed to limit the use of the built-in SSO administrator account.

Check Contents

Verify the built-in SSO administrator account is only used for emergencies and situations where it is the only option due to permissions.

If the built-in SSO administrator account is used for daily operations or there is no policy restricting its use, this is a finding.

Vulnerability Number

V-216833

Documentable

False

Rule Version

VCWN-65-000010

Severity Override Guidance

Verify the built-in SSO administrator account is only used for emergencies and situations where it is the only option due to permissions.

If the built-in SSO administrator account is used for daily operations or there is no policy restricting its use, this is a finding.

Check Content Reference

M

Target Key

4030

Comments