The Dragos Platform must only allow local administrative and service user accounts.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-270919 | DRAG-OT-000240 | SV-270919r1058028_rule | Medium |
| Description |
| Only two default accounts facilitate the initial setup and configuration of the Platform. These accounts provide immediate access to the system, allowing administrators to quickly get the system up and running without needing to create new user accounts during the initial installation phase. During maintenance, updates, or support operations, default accounts allow vendor support teams to access the system without needing to manage a variety of customer-specific accounts. This can streamline support activities and reduce downtime. Default accounts passwords need to be protected so they cannot be exploited by attackers to gain unauthorized access to the system. Satisfies: SRG-APP-000080, SRG-APP-000234 |
| STIG | Date |
| Dragos Platform 2.x Security Technical Implementation Guide | 2024-12-23 |
Details
| Check Text (C-74962r1057999_chk) |
| Verify local user accounts. While logged in to the Dragos Platform with a user account with administrative privileges, navigate to Admin >> User Management >> Users. If any user except the Administrator and Service account is found, this is a finding. |
| Fix Text (F-74863r1057399_fix) |
| Remove nonessential users. While logged in to the Dragos Platform with a user account with administrative privileges, navigate to Admin >> User Management >> Users. Click the kebab menu next to the user and select "Delete User". Click "DELETE" in the verification window. |