STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← Back to VMware vRealize Automation 7.x vAMI Security Technical Implementation Guide

V-240959

CAT II (Medium)

The vAMI must log all successful login events.

Rule ID

SV-240959r879874_rule

STIG

VMware vRealize Automation 7.x vAMI Security Technical Implementation Guide

Version

V1R2

CCIs

CCI-000172

Discussion

Logging the access to the application server allows the system administrators to monitor user accounts. By logging successful/unsuccessful logons, the system administrator can determine if an account is compromised (e.g., frequent logons) or is in the process of being compromised (e.g., frequent failed logons) and can take actions to thwart the attack. Logging successful logons can also be used to determine accounts that are no longer in use.

Check Content

At the command prompt, execute the following command:

grep quiet_success /etc/pam.d/vami-sfcb

If the command returns any output, this is a finding.

Fix Text

Navigate to and open /etc/pam.d/vami-sfcb.

Comment out the line which contains quiet_success