The root account must be disabled for interactive use.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-51527 | OSX8-00-01230 | SV-65737r1_rule | Medium |
| Description |
|---|
| The root account must be disabled for interactive use. |
| STIG | Date |
|---|---|
| Apple OS X 10.8 (Mountain Lion) Workstation STIG | 2015-02-10 |
Details
| Check Text ( C-53861r1_chk ) |
|---|
| To check if the root user has been enabled, run the following command: sudo dscl . -read /Users/root AuthenticationAuthority If the result does not return "No such key: AuthenticationAuthority", this is a finding. |
| Fix Text (F-56331r1_fix) |
|---|
| To disable the root user account, run the following command: sudo dsenableroot -d |