Users defined do not match requirement-checkpoint-secureplatform

Users defined do not match requirement-checkpoint-secureplatform
0

Users defined do not match requirement-checkpoint-secureplatform

Vendor: checkpoint

OS: secureplatform

Description:
Indeni can verify that only certain users are configured on a specific device and that others shouldn’t be.

Remediation Steps:
Update the configuration of the device to match the requirement.

chkp-secureplatform-users

name: chkp-secureplatform-users
description: displays list of users
type: monitoring
monitoring_interval: 10 minute
requires:
    vendor: checkpoint
    os.name: secureplatform
comments:
  users:
    why: |
      To check the active users accounts configured over the environment
    how: |
      By using the linux file "etc/passwd"
    can-with-snmp: false
    can-with-syslog: false
steps:
-   run:
        type: SSH
        command: ${nice-path} -n 15 cat /etc/passwd
    parse:
        type: AWK
        file: users.parser.1.awk

crossvendor_compliance_check_users_defined

// Deprecation warning : Scala template-based rules are deprecated. Please use YAML format rules instead.

package com.indeni.server.rules.library.templatebased.crossvendor.compliance

import com.indeni.server.rules.RuleContext
import com.indeni.server.rules.library.templates.MultiSnapshotComplianceCheckTemplateRule
import com.indeni.server.sensor.models.managementprocess.alerts.dto.AlertSeverity

case class crossvendor_compliance_check_users_defined() extends MultiSnapshotComplianceCheckTemplateRule(
  ruleName = "crossvendor_compliance_check_users_defined",
  ruleFriendlyName = "Compliance Check: Users defined do not match requirement",
  ruleDescription = "Indeni can verify that only certain users are configured on a specific device and that others shouldn't be.",
  severity = AlertSeverity.WARN,
  metricName = "users",
  itemKey = "username",
  alertDescription = "The list of users defined on this device does not match the requirement. Please review the list below.",
  baseRemediationText = "Update the configuration of the device to match the requirement.",
  requiredItemsParameterName = "Users (Whitelist)",
  requiredItemsParameterDescription = "Enter the list of users that should be defined, each one on its own line. indeni will alert if there are any users defined which are not in this list."
)()