Free DISA STIG and SRG Library | Vaulted

V-56587

The operating system must not allow an unattended or automatic logon to the system.

Finding ID
SRG-OS-000480-GPOS-00229
Rule ID
SV-70847r1_rule
Severity
Cat II
CCE
(None)
Group Title
SRG-OS-000480-GPOS-00229
CCI
CCI-000366
Target Key
(None)
Documentable
No
Discussion

Failure to restrict system access to authenticated users negatively impacts operating system security.

Fix Text

If the operating system provides a public access service, such as a kiosk, this is not applicable. Configure the operating system to not allow an unattended or automatic logon to the system. Automatic logon as an authorized user allows access to any user with physical access to the operating system.

Check Content

If the operating system provides a public access service, such as a kiosk, this is not applicable. Verify the operating system does not allow an unattended or automatic logon to the system. If it does, this is a finding. Automatic logon as an authorized user allows access to any user with physical access to the operating system.