openstack/openstack-ansible-security
Code Issues Proposed changes

[Docs] Exception for removing unnecessary accounts

Browse Source 
It isn't possible for automated tasks to determine which accounts are
unnecessary. Deployers must perform these audits manually.

Implements: blueprint security-rhel7-stig
Change-Id: I68984e72cfb2073a6b3bbe98cd935632c3be138f
This commit is contained in:
Major Hayden
2016-12-05 08:52:32 -06:00
parent fa657903bc
commit 2ac6dd60c0
1 changed files with 6 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
doc/metadata/rhel7/RHEL-07-020290.rst
View File

@@ -1,7 +1,10 @@
---
id: RHEL-07-020290
status: not implemented
tag: misc
status: exception - manual intervention
tag: auth
---
This STIG requirement is not yet implemented.
Deployers are strongly urged to review the list of user accounts on each server
regularly. Evaluation of user accounts must be done on a case-by-case basis and
the tasks in the security role are unable to determine which user accounts are
valid. Deployers must complete this work manually.