000034451 - Unexpected new Linux user accounts added to RSA Authentication Manager 8.2 Patch 1

Document created by RSA Customer Support Employee on Dec 8, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000034451
Applies ToRSA Product Set: SecurID
RSA Product/Service Type: Authentication Manager 
RSA Version/Condition: 8.2 Patch 1 and Patch 2
 
IssueAuthentication Manager 8.2 Patch 1 and 2 add several unused Linux users accounts.  These are:
  • FTP,
  • games,
  • lp,
  • news, and
  • uucp.
 
ResolutionThese accounts are removed in RSA Authentication Manager 8.2 P03.
Please download Authentication Manager 8.2 P03 and the readme.
Please note that applying this patch will reboot the RSA Authentication Manager server unlike other patches.
NotesAs indicated by the /etc/shadow file these accounts are disabled:
 
ftp:*:17105::::::
games:*:17105::::::
lp:*:17105::::::
news:*:17105::::::
uucp:*:17105::::::

These are default users associated with normal installation of the SUSE Linux server, but not used by Authentication Manager and cannot login. 

Attachments

    Outcomes