Nutanix OS must not install autofs.service.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-279601 | NXAC-OS-000157 | SV-279601r1192483_rule | CCI-000778 | medium |
| Description | ||||
| Without identifying devices, unidentified or unknown devices may be introduced, thereby facilitating malicious activity. Peripherals include, but are not limited to, such devices as flash drives, external storage, and printers. | ||||
| STIG | Date | |||
| Nutanix Acropolis GPOS Security Technical Implementation Guide | 2026-02-24 | |||
Details
Check Text (C-279601r1192483_chk)
Verify Nutanix OS is configured to not automount devices using the following command.
$ sudo systemctl status autofs
If "autofs.sevice" is installed and or enabled, this is a finding.
Fix Text (F-84059r1191766_fix)
Nutanix OS does not support the autofs.service by design. If autofs.service is enabled, some type of corruption has occurred and the OS must be rebuilt.