Nutanix AOS must use an enterprise user management system to uniquely identify and authenticate users.

An XCCDF Rule

Description

<VulnDiscussion>To ensure accountability and prevent unauthorized access, application server users must be uniquely identified and authenticated. This is typically accomplished via the use of a user store which is either local (OS-based) or centralized (LDAP) in nature. To ensure support to the enterprise, the authentication must utilize an enterprise solution.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-254109r858122_rule
Severity: Medium
References: CCI-000764
Updated: about 1 year ago

Configure Nutanix AOS to use an enterprise user management system to authenticate individual users.

1. Log in to Prism Element.
2. Click on the gear icon in the upper right.
3. Navigate to the Authentication settings.
4. Add an Active Directory or OpenLDAP server to the Directory List.
Configure one local admin user as the account of last resort.

1. Log in to Prism Element.
2.  Click on the gear icon in the upper right.
3.  Navigate to "Local User Management".
4.  Select "+ New Users".

Nutanix AOS must use an enterprise user management system to uniquely identify and authenticate users.

Description

Remediation - Manual Procedure