This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements

SecurID® Discussions

Browse the SecurID discussion board to get product help and collaborate with other SecurID users.
NedKelley
New Contributor
New Contributor
‎2020-10-28 03:45 PM

RSA AM 8.4 Patch 14 ACAS Plugins

Hello RSA Support;

 

My name is Ned Kelley, I serve as an IT Contractor, Cyber Security Engineer/ Analyst supporting the USAF.

 

Question concerning our RSA Authentication Manager 8.4 (Patch # 14) / Secure ID Access # 416835052

 

We applied RSA AM 8.4 Patch 14 to our RSA Virtual Servers. Our ACAS scans popped two  new plugin findings:

 

Plugin 102094 - SSH Commands require privilege escalation

Plugin 110385 - Target Credential Issues by Authentication Protocol - Insufficient privileges?

 

We are using Nessus Security Center version 5.8.0. Wondering if this is normal or to be expected?

 

 

Thank you;

 

Ned

Labels (1)
0 Likes
Reply
2 Replies
EdwardDavis
Employee
Employee
‎2020-10-28 04:29 PM

The risk for both is INFO. Did you leave ssh enabled in the Operations Console ?

0 Likes
Reply
PiersB
Trusted Contributor Trusted Contributor
Trusted Contributor
‎2020-10-29 06:26 PM

I would also note that this is a forum for product questions, but is not technically product support.

 

If you need product support, please go to: RSA Support  and use the "Open a Support Case" link.

0 Likes
Reply
© 2023 RSA Security LLC or its affiliates. All rights reserved.