STIGQter: STIG Summary: General Purpose Operating System SRG Version: 1 Release: 6 Benchmark Date: 26 Jul 2019:

The information system must automatically remove or disable emergency accounts after the crisis is resolved or 72 hours.

DISA Rule

SV-71065r3_rule

Vulnerability Number

V-56805

Group Title

SRG-OS-000123-GPOS-00064

Rule Version

SRG-OS-000123-GPOS-00064

Severity

CAT II

CCI(s)

CCI-001682 - The information system automatically removes or disables emergency accounts after an organization-defined time period for each type of account.

Weight

Fix Recommendation

Configure the operating system such that emergency administrator accounts are automatically removed or disabled within 72 hours.

Check Contents

Verify the operating system is configured such that emergency administrator accounts are automatically removed or disabled within 72 hours. If it is not, this is a finding.

Vulnerability Number

V-56805

Documentable

False

Rule Version

SRG-OS-000123-GPOS-00064

Severity Override Guidance

Verify the operating system is configured such that emergency administrator accounts are automatically removed or disabled within 72 hours. If it is not, this is a finding.

Check Content Reference

Target Key

2739

The information system must automatically remove or disable emergency accounts after the crisis is resolved or 72 hours.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments