9.1.1.2. Account ManagementΒΆ
SIMP makes several account management decisions that are part of the overall
account management strategy. One of those cases is the use of passwordless
sudo for any user in the administrators
or auditors
groups. This is on
by default due to the expected use of SSH keys and lack of local passwords.
References: AC-2 : ACCOUNT MANAGEMENT, AC-6 (1) : AUTHORIZE ACCESS TO SECURITY FUNCTIONS