07-27-2018 07:59 AM
I've been trying to access the CSPC CLI without success, and it appears that our Nessus scanning appliance has locked all CLI accounts. I can reinstall the appliance, but I would like to know how to transition these accounts so that, 1) the root can only be used locally and not for remote login to prevent it from being locked out, 2) how to create an alternate account that would not be used by Nessus for scanning access, 3) how to prevent a permanent lockout for the admin account (which is what appears to have happened).
GUI access is working fine.
Trying to work in a world of balancing security awareness and get stuff done. By that I mean, it's impractical for me to ask the security team to not scan this appliance because it could lock the accounts; these systems need to be monitored. It also isn't practical for me to redeploy when one of these lockout events occur; major waste of time. [Sorry for the rant!]
07-27-2018 12:09 PM
07-27-2018 01:49 PM
07-27-2018 01:53 PM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide