STIGQter: STIG Summary: General Purpose Operating System SRG Version: 1 Release: 6 Benchmark Date: 26 Jul 2019:

The operating system must not allow an unattended or automatic logon to the system.

DISA Rule

SV-70847r1_rule

Vulnerability Number

V-56587

Group Title

SRG-OS-000480-GPOS-00229

Rule Version

SRG-OS-000480-GPOS-00229

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

If the operating system provides a public access service, such as a kiosk, this is not applicable. Configure the operating system to not allow an unattended or automatic logon to the system. Automatic logon as an authorized user allows access to any user with physical access to the operating system.

Check Contents

If the operating system provides a public access service, such as a kiosk, this is not applicable. Verify the operating system does not allow an unattended or automatic logon to the system. If it does, this is a finding. Automatic logon as an authorized user allows access to any user with physical access to the operating system.

Vulnerability Number

V-56587

Documentable

False

Rule Version

SRG-OS-000480-GPOS-00229

Severity Override Guidance

If the operating system provides a public access service, such as a kiosk, this is not applicable. Verify the operating system does not allow an unattended or automatic logon to the system. If it does, this is a finding. Automatic logon as an authorized user allows access to any user with physical access to the operating system.

Check Content Reference

M

Target Key

2739

Comments