Detections
Analytics
AIX7-00-003200 - The AIX operating system must use Multi Factor Authentication.
Information
To assure accountability and prevent unauthenticated access, privileged and non-privileged users must utilize multifactor authentication to prevent potential misuse and compromise of the system.Multifactor authentication uses two or more factors to achieve authentication.
Factors include:
1. Something you know (e.g., password/PIN);
2. Something you have (e.g., cryptographic identification device, token); and
3. Something you are (e.g., biometric).
The DoD CAC with DoD-approved PKI is an example of multifactor authentication.
Satisfies: SRG-OS-000105-GPOS-00052, SRG-OS-000106-GPOS-00053, SRG-OS-000107-GPOS-00054, SRG-OS-000108-GPOS-00055, SRG-OS-000375-GPOS-00160
Solution
Install the IBM PowerSC MFA product.See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_IBM_AIX_7-x_V3R1_STIG.zip
Item Details
Audit Name: DISA STIG AIX 7.x v3r1
Category: IDENTIFICATION AND AUTHENTICATION
References: 800-53|IA-2(1), 800-53|IA-2(2), 800-53|IA-2(3), 800-53|IA-2(4), 800-53|IA-2(11), CAT|II, CCI|CCI-000765, CCI|CCI-000766, CCI|CCI-000767, CCI|CCI-000768, CCI|CCI-001948, CCI|CCI-004046, Rule-ID|SV-215436r1009557_rule, STIG-ID|AIX7-00-003200, STIG-Legacy|SV-103029, STIG-Legacy|V-92941, Vuln-ID|V-215436
Plugin: Unix
Control ID: af5c39821b64db10659ae0339168bcc17effba51476709b416140a0b06f9a4c5