3.2 - Default Accounts - Review default accounts

Information

Orphaned accounts are a major security vector that often lead to vulnerabilities, including the escalation of privileges. They are unnecessary and unused accounts that remain in the user account repository. They are primarily default accounts that were never used or for which passwords were never updated or changed. To address this issue, the ONTAP solution supports the removal and renaming of accounts.

NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.

Solution

Although orphaned accounts are a significant security issue, NetApp strongly recommends testing the effect of removing accounts from the local account repository.

See Also

https://www.netapp.com/us/media/tr-4569.pdf

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-2

Plugin: Netapp_API

Control ID: 0db8bdf003b1ea22ac43343e841142f835339649ee2ba2579b337f697a96e77b