OpenControls Logo

STIG Viewer

Nutanix OS must not install autofs.service.

Overview

Finding IDVersionRule IDIA ControlsSeverity
V-279601NXAC-OS-000157SV-279601r1192483_ruleCCI-000778medium
Description
Without identifying devices, unidentified or unknown devices may be introduced, thereby facilitating malicious activity. Peripherals include, but are not limited to, such devices as flash drives, external storage, and printers.
STIGDate
Nutanix Acropolis GPOS Security Technical Implementation Guide2026-02-24

Related Frameworks

4 paths across 3 frameworks
NIST 800-531 mapping
IA-3
1.00
  • DISA · V1R1 · disa_xccdf · related
  • DISA · 2025-01-23 · disa_cci_list · equivalent
NIST 800-1712 mappings
3.5.1
1.00
  • DISA · V1R1 · disa_xccdf · related
  • DISA · 2025-01-23 · disa_cci_list · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
3.5.2
1.00
  • DISA · V1R1 · disa_xccdf · related
  • DISA · 2025-01-23 · disa_cci_list · equivalent
  • NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI1 mapping
CCI-000778
1.00
  • DISA · V1R1 · disa_xccdf · related

Details

Check Text (C-279601r1192483_chk)

Verify Nutanix OS is configured to not automount devices using the following command. $ sudo systemctl status autofs If "autofs.sevice" is installed and or enabled, this is a finding.

Fix Text (F-84059r1191766_fix)

Nutanix OS does not support the autofs.service by design. If autofs.service is enabled, some type of corruption has occurred and the OS must be rebuilt.