Nutanix AOS must require users to reauthenticate for privilege escalation.

An XCCDF Rule

Details
Profiles

Description

Without reauthentication, users may access resources or perform tasks for which they do not have authorization. When operating systems provide the capability to escalate a functional capability, it is critical the user reauthenticate. Satisfies: SRG-OS-000373-GPOS-00156, SRG-OS-000373-GPOS-00157, SRG-OS-000373-GPOS-00158

ID: SV-254204r846700_rule
Version: NUTX-OS-001170
Severity: Medium
References: CCI-002038
Updated: 5 days ago

Remediation Templates

If any occurrences of "NOPASSWD" found are not documented with the ISSO need to be removed. Configure Nutanix AOS to meet this requirement run the following command:

salt-call state.sls security/CVM/manualCVM

Nutanix AOS must require users to reauthenticate for privilege escalation.

Description

Remediation Templates

A Manual Procedure