Automation Controller must be configured to authenticate users individually, prior to using a group authenticator.

An XCCDF Rule

Description

Default superuser accounts, such as "root", are considered group authenticators. In the case of Automation Controller this is the "admin" account.

ID: SV-256906r986176_rule
Version: APAS-AT-000050
Severity: Medium
References: CCI-004045
Updated: 15 days ago

Remediation Templates

Log in to the Automation Controller web console as an administrator and navigate to Access >> Users.

Click the Username to be removed.

Select "Delete" and confirm.