Rule Check: User Account Presence
The User Account Presence check compares the specified username or names with the current set of local user accounts on the server being scanned. Depending on which option you choose, the check fails and an event is generated if a listed account does not exist, or does exist, or if an existing account is not listed.
The username of the account to look for. Any valid username or a comma-delimited list of names is acceptable. Wildcards are not supported.
Some valid examples:
Some examples that will not work:
|Should be present||
If you choose this, all of the listed accounts should exist on the server. If any of the listed accounts does not exist, the check fails.
|Should not be present||
If you choose this, none of the listed accounts should exist on the server. If any of the listed accounts does exist, the check fails. (The check functions as a blacklist.)
|Allowed to be present||
If you choose this, any of the listed accounts is acceptable to be present. If any existing account is not in the list, the check fails. (The check functions as a whitelist.)
|Remedial Suggestion (optional)||
Description of how you plan to remediate situations in which this check fails.
// <![CDATA[ var pdfTitle="Configuration Security Monitoring"; var pdfURL="http://www.cloudpassage.com/document_images/CSM/configuration-security.pdf"; specifyPDF(pdfTitle, pdfURL); // ]]>