User credentials which would allow remote access to the system by the Service Processor must be removed from the storage system.

From HPE 3PAR StoreServ 3.2.x Security Technical Implementation Guide

Associated with: CCI-000877

SV-85127r2_rule User credentials which would allow remote access to the system by the Service Processor must be removed from the storage system.

Vulnerability discussion

Failure to remove the default user accounts associated with remote access from the Service Processor increases the risk of unauthorized access to the 3PAR OS via the product's remote support interface.The Service Processor's authentication methods have not been evaluated and using such mechanisms to permit remote, full control of the system by organizational or non-organizational users represents an increased risk to unauthorized access.The Service Processor can also send system data offsite providing access to system information to non-DoD organizations.

Check content

Verify Service Processor credentials are not present. cli% showuser If any of the users, "3parbrowse", "3paredit", or "3parservice" exist, this is a finding

Fix text

Remove the Service Processor credentials from the storage system. Enter the following command: cli% removespcredential Note: This removes the "3paredit", "3parbrowse", and "3parservice" users, and sets the "3parsvc" password to a new random value.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.