Automation Controller must be configured to authenticate users individually, prior to using a group authenticator.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-256906 | SRG-APP-000153-AS-000104 | APAS-AT-000050 | SV-256906r986176_rule | 2024-06-10 | 2 |
| Description |
|---|
| Default superuser accounts, such as "root", are considered group authenticators. In the case of Automation Controller this is the "admin" account. |
| ℹ️ Check |
|---|
| Log in to the Automation Controller web console as an administrator and navigate to Access >> Users. The only local user allowed is the default/breakglass "admin". All other users need to come from an external authentication source. If any other local users exist, this is a finding. |
| ✔️ Fix |
|---|
| Log in to the Automation Controller web console as an administrator and navigate to Access >> Users. Click the Username to be removed. Select "Delete" and confirm. |