Users defined do not match requirement for Check Point

Vendor

Check Point

Description

Indeni can verify that only certain users are configured on a specific device and that others shouldn't be.

Remediation Steps

Update the configuration of the device to match the requirement.

How does this work?

Parse the Gaia/IPSO configuration database in /config/active and retreive the currently configured users. It is also possible to list them using clish, but that generates a large amount of logs in /var/log/messages when done repeatedly.

Why is this important?

Often user accounts are left enabled after administrators leave. Therefore it's important to have an easy way to review all accounts currently active.

Without Indeni how would you find this?

An administrator could login and manually run the command.

View Source Code
single