The Photon operating system must use OpenSSH for remote maintenance sessions.

DISA Rule

SV-239139r675225_rule

V-239139

SRG-OS-000395-GPOS-00175

PHTN-67-000068

CAT II

CCI-000197 - The information system, for password-based authentication, transmits only cryptographically-protected passwords.
CCI-000803 - The information system implements mechanisms for authentication to a cryptographic module that meet the requirements of applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance for such authentication.
CCI-000877 - The organization employs strong authenticators in the establishment of nonlocal maintenance and diagnostic sessions.
CCI-001941 - The information system implements replay-resistant authentication mechanisms for network access to privileged accounts.
CCI-001942 - The information system implements replay-resistant authentication mechanisms for network access to non-privileged accounts.
CCI-002420 - The information system maintains the confidentiality and/or integrity of information during preparation for transmission.
CCI-002422 - The information system maintains the confidentiality and/or integrity of information during reception.
CCI-002891 - The information system implements remote disconnect verification at the termination of nonlocal maintenance and diagnostic sessions.

Installing openssh manually is not supported by VMware. Revert to a previous backup or redeploy the VCSA.

At the command line, execute the following command:

# rpm -qa|grep openssh

If there is no output, this is a finding.

V-239139

False

PHTN-67-000068

At the command line, execute the following command:

# rpm -qa|grep openssh

If there is no output, this is a finding.

5323