The system must limit the use of the built-in SSO administrative account.

From VMware vSphere vCenter Server Version 6 Security Technical Implementation Guide

Associated with: CCI-000770

SV-78449r1_rule The system must limit the use of the built-in SSO administrative account.

Vulnerability discussion

Use of the SSO administrator account should be limited as it is a shared account and individual accounts must be used wherever possible.

Check content

Verify the built-in SSO administrator account is only used for emergencies and situations where it is the only option due to permissions. If the built-in SSO administrator account is used for daily operations or there is no policy restricting its use, this is a finding.

Fix text

A policy should be developed to limit the use of the built-in SSO administrator account.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.