Help Central | G5 Cyber Security
Security Hardening
TNS BestPractice FireEye

FireEye - AAA lockout settings apply to the 'admin' user

Gavin M. Dennis

22 April 2022 02:47

Details

Password-guessing attacks against the 'admin' account may succeed quickly if account lockouts are not enabled.

Solution

Edit the configuration and add this line:\n

no aaa authentication attempts class-override admin no-lockout

This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system FireEye.

References

800-53|AC-7a.
CSCv6|16.7

Source

Tenable.com/audits

PS. Before you go.

Request a quote to protect your organisation from cyber attacks and breaches.

Was this article helpful?

0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.

Articles in this section

FireEye - A scheduled system backup job is configured
FireEye - AAA failed logins are tracked
FireEye - AAA is enabled
FireEye - AAA LDAP binding user should not be an admin
FireEye - AAA lockout settings apply to the 'admin' user
FireEye - AAA lockouts are enabled
FireEye - AAA lockouts delay further attempts for at least 30 seconds
FireEye - AAA lockouts occur after at most 5 failures
FireEye - AAA tries local authentication first
FireEye - AAA user mapping default