STIGQter: STIG Summary: VMware vSphere 6.7 vCenter Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 09 Mar 2021:

The vCenter Server must limit the use of the built-in SSO administrative account.

DISA Rule

SV-243080r719483_rule

Vulnerability Number

V-243080

Group Title

SRG-APP-000153

Rule Version

VCTR-67-000010

Severity

CAT II

CCI(s)

• CCI-000770 - The organization requires individuals to be authenticated with an individual authenticator when a group authenticator is employed.

Weight

10

Fix Recommendation

Develop a policy to limit the use of the built-in SSO administrator account.

Check Contents

Verify the built-in SSO administrator account is only used for emergencies and situations where it is the only option due to permissions.

If the built-in SSO administrator account is used for daily operations or there is no policy restricting its use, this is a finding.

Vulnerability Number

V-243080

Documentable

False

Rule Version

VCTR-67-000010

Severity Override Guidance

Verify the built-in SSO administrator account is only used for emergencies and situations where it is the only option due to permissions.

If the built-in SSO administrator account is used for daily operations or there is no policy restricting its use, this is a finding.

Check Content Reference

M

Target Key

5399

Comments