STIGQter: STIG Summary: Symantec ProxySG NDM Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Jan 2020:

Symantec ProxySG must be configured with only one local account that is used as the account of last resort.

DISA Rule

SV-104483r1_rule

Vulnerability Number

V-94653

Group Title

SRG-APP-000148-NDM-000346

Rule Version

SYMP-NM-000010

Severity

CAT II

CCI(s)

• CCI-001358 - The organization establishes privileged user accounts in accordance with a role-based access scheme that organizes allowed information system access and privileges into roles.
• CCI-002111 - The organization identifies and selects the organization-defined information system account types of information system accounts which support organizational missions/business functions.

Weight

10

Fix Recommendation

Remove local accounts that are not the account of last resort.

1. Log on to the Web Management Console.
2. Click "Local".
3. If a local realm exists on the list, delete the realm.

Check Contents

Verify local accounts besides the account of last resort do not exist.

Show security local-user-list
View "Users:" list

If any users show in the "Users" configuration list other than the default admin user, this is a finding.

Vulnerability Number

V-94653

Documentable

False

Rule Version

SYMP-NM-000010

Severity Override Guidance

Verify local accounts besides the account of last resort do not exist.

Show security local-user-list
View "Users:" list

If any users show in the "Users" configuration list other than the default admin user, this is a finding.

Check Content Reference

M

Target Key

3517

Comments