STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to Nutanix AOS 5.20.x Application Security Technical Implementation Guide

V-254109

CAT II (Medium)

Nutanix AOS must use an enterprise user management system to uniquely identify and authenticate users.

Rule ID

SV-254109r960969_rule

STIG

Nutanix AOS 5.20.x Application Security Technical Implementation Guide

Version

V1R2

CCIs

CCI-000764

Discussion

To ensure accountability and prevent unauthorized access, application server users must be uniquely identified and authenticated. This is typically accomplished via the use of a user store which is either local (OS-based) or centralized (LDAP) in nature. To ensure support to the enterprise, the authentication must utilize an enterprise solution.

Check Content

Verify that Nutanix AOS is set to use enterprise user management systems.

1. Log in to Prism Element.
2. Click on the gear icon in the upper right.
3. Navigate to the "Authentication" settings.

If an Active Directory or OpenLDAP server is not configured, this is a finding.

Verify that only one local user account exists as the account of last resort.

Navigate to Local User Management.

If more than one local user account exists, this is a finding.

Fix Text

Configure Nutanix AOS to use an enterprise user management system to authenticate individual users.

1. Log in to Prism Element.
2. Click on the gear icon in the upper right.
3. Navigate to the Authentication settings.
4. Add an Active Directory or OpenLDAP server to the Directory List.

Configure one local admin user as the account of last resort.

1. Log in to Prism Element.
2.  Click on the gear icon in the upper right.
3.  Navigate to "Local User Management".
4.  Select "+ New Users".