| Operating system management functionality includes functions necessary to administer the operating, network components, workstations, or servers, and typically requires privileged user access. The separation of user functionality from information system management functionality is either physical or logical and is accomplished by using different computers, different central processing units, different instances of the operating system, different network addresses, combinations of these methods, or other methods as appropriate. Permanent not a finding - The system management interface is already required to be isolated from production services hosted by VMs. There are no "users", and by extension, no user non-security functions. |
