Classification: Application
Category: Network service problem
Context: Operating System
Summary
There is only one user assigned the FMOS Administrator privilege.
Description
The FMOS Administrator privilege is granted to users to allow them to manage the FMOS machine. Users with this privilege can update FMOS, control Security Intelligence Platform applications, troubleshoot issues, and more. This warning is issued when there exists only a single user who holds this privilege.
Impact
Should an account holding the FMOS Administrator privilege become inaccessible, for example its password was lost, another user holding the FMOS Administrator role will need to recover it. If no other users hold this privilege, it will be impossible to recover, and the machine may become completely unusable.
Cause
This message appears if there is only one user with the FMOS Administrator privilege.
Resolution
To resolve this issue, grant another account the FMOS Administrator privilege. Ideally, this account should be owned by another person within the organization. Alternatively, the password for this account should be stored securely, such as in a password database or in a locked vault.
To add another account, use the fmos user create command. This command will prompt for the username, full name, and privileges for the new account. Be sure to select the FMOS Administrator privilege when creating the secondary account.
To grant the FMOS Administrator privilege to an existing account, use the fmos user grant-privileges command. This command will prompt for the username of an existing user and the privileges that should be assigned to that user.
Comments
0 comments
Article is closed for comments.