Prisma Cloud Compute must be configured with unique user accounts.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-253537 | CNTR-PC-000590 | SV-253537r1015785_rule | CCI-004045 | medium |
| Description | ||||
| Sharing accounts, such as group accounts, reduces the accountability and integrity of Prisma Cloud Compute. | ||||
| STIG | Date | |||
| Palo Alto Networks Prisma Cloud Compute Security Technical Implementation Guide | 2024-12-06 | |||
Related Frameworks
2 paths across 2 frameworks
Related Frameworks
NIST 800-531 mapping
IA-2(5)
1.00
- DISA · 2 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI1 mapping
CCI-004045
1.00
- DISA · 2 · disa_xccdf · related
Details
Check Text (C-253537r1015785_chk)
Navigate to Prisma Cloud Compute Console's >> Manage >> Authentication >> Users tab.
Review the accounts for uniqueness. If there are shared local accounts, this is a finding.
Fix Text (F-56940r840448_fix)
Navigate to Prisma Cloud Compute Console's Manage >> Authentication >> Users tab.
Delete shared accounts and create a unique account for every Prisma Cloud Compute user.
Delete shared accounts:
- Click the three-dot menu.
- Click "Delete" and confirm "Delete User".
Create a local user account where the local user account is unique:
- Click "+Add user".
- Complete the form and click "Save".