STIGQter: STIG Summary: ForeScout CounterACT NDM Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 12 Sep 2017:

In the event the authentication server is unavailable, one local account must be created for use as the account of last resort.

DISA Rule

SV-90937r1_rule

Vulnerability Number

V-76249

Group Title

SRG-APP-000148-NDM-000346

Rule Version

CACT-NM-000027

Severity

CAT II

CCI(s)

• CCI-001358 - The organization establishes privileged user accounts in accordance with a role-based access scheme that organizes allowed information system access and privileges into roles.
• CCI-002111 - The organization identifies and selects the organization-defined information system account types of information system accounts which support organizational missions/business functions.

Weight

10

Fix Recommendation

Create a local account with full administrator privileges to be used as the account of last resort. The default admin account may be used to fulfill this requirement.

1. Log on to the CounterACT Administrator UI.
2. From the menu, select Tools >> Options >> User Console and Options.

Remove unneeded accounts, if any.

Check Contents

Verify that only one local account exists and it has full administrator privileges.

1. Log on to the CounterACT Administrator UI.
2. From the menu, select Tools >> Options >> User Console and Options.

If more than one local user account exists, this is a finding.

Vulnerability Number

V-76249

Documentable

False

Rule Version

CACT-NM-000027

Severity Override Guidance

Verify that only one local account exists and it has full administrator privileges.

1. Log on to the CounterACT Administrator UI.
2. From the menu, select Tools >> Options >> User Console and Options.

If more than one local user account exists, this is a finding.

Check Content Reference

M

Target Key

3225

Comments