3.1 - Roles, Applications, and Authentication - Review custom roles

Information

With role-based access control (RBAC), users have access only to the systems and options that are required for their job roles and functions. The RBAC solution in NetApp ONTAP software limits users' administrative access to the level that is granted for their defined role, which allows administrators to manage users by assigned role. ONTAP provides several predefined roles.

NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.

Solution

Operators and administrators can create, modify, or delete custom access-control roles, and they can specify account restrictions for specific roles.

See Also

https://www.netapp.com/us/media/tr-4569.pdf

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-2(7)

Plugin: Netapp_API

Control ID: 2afde9d7b5de1c082b7245cbb8fdbdfb9904017dd18e249c9123ff8e1187403f