Members of the SCOM Administrators Group must be reviewed to ensure access is still required.
An XCCDF Rule
Description
<VulnDiscussion>When people leave their roles, their group memberships are often times not updated.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-237423r643915_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
From Active Directory Users and Computers, search for the group containing SCOM administrators. Double-click on the group and select the members tab. For each user that no longer needs rights, select the account and click the Remove button. Click OK once finished.