Unused accounts must be disabled or removed from the system after 35 days of inactivity.

An XCCDF Rule

Details
Profiles
Prose

Description

<VulnDiscussion>Outdated or unused accounts provide penetration points that may go undetected. Inactive accounts must be deleted if no longer necessary or, if still required, disable until needed. Satisfies: SRG-OS-000468-GPOS-00212, SRG-OS-000118-GPOS-00060</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-253268r1016424_rule
Severity: Low
References: CCI-000172 CCI-000795 CCI-000795 CCI-003627
Updated: 17 days ago

Review local accounts and verify their necessity. Disable or delete any active accounts that have not been used in the last 35 days.

Unused accounts must be disabled or removed from the system after 35 days of inactivity.

Description

Remediation - Manual Procedure