The DBMS must disable accounts when the accounts have expired.
An XCCDF Rule
Description
Disabling expired, inactive, or otherwise anomalous accounts supports the concepts of least privilege and least functionality, which reduce the attack surface of the system.
- ID
- SV-263602r982479_rule
- Version
- SRG-APP-000700-DB-000100
- Severity
- Medium
- References
- Updated
Remediation Templates
A Manual Procedure
Configure the DBMS to disable accounts when the accounts have expired.