AIX must configure the ttys value for all interactive users.

An XCCDF Rule

Details
Profiles

Description

A user's "ttys" attribute controls from which device(s) the user can authenticate and log in. If the "ttys" attribute is not specified, all terminals can access the user account.

ID: SV-215186r958498_rule
Version: AIX7-00-001025
Severity: Medium
References: CCI-000778
Updated: 24 days ago

Remediation Templates

From the command prompt, run the following command to set "ttys=ALL" for the default stanza in "/etc/security/user":
# chsec -f /etc/security/user -s default -a ttys=ALL

Run the following command to recheck "ttys" values for all users:
# lsuser -a ttys ALL
For each interactive user who does not have "ttys=ALL", set the value of "ttys" to "ALL" by running the following command from command prompt:
# chsec -f /etc/security/user -s [user_name] -a ttys=ALL

AIX must configure the ttys value for all interactive users.

Description

Remediation Templates

A Manual Procedure