SV-26768r1_rule
V-22475
GEN005526
GEN005526
CAT III
10
Edit the SSH daemon configuration and set (add if necessary) a KerberosAuthentication directive set to no.
Ask the SA if Kerberos authentication is used by the system. If it is, this is not applicable.
Check the SSH daemon configuration for the Kerberos authentication setting.
# grep -i KerberosAuthentication /etc/ssh/sshd_config | grep -v '^#'
If no lines are returned, or the setting is set to yes, this is a finding.
V-22475
False
GEN005526
Ask the SA if Kerberos authentication is used by the system. If it is, this is not applicable.
Check the SSH daemon configuration for the Kerberos authentication setting.
# grep -i KerberosAuthentication /etc/ssh/sshd_config | grep -v '^#'
If no lines are returned, or the setting is set to yes, this is a finding.
M
System Administrator
1386