Details
This change disables direct login access for the adm user account.
This change disables direct local and remote login to the adm user account. It is recommended that a password is not set on this account to ensure that the only access is via su from the root account.
There should not be a requirement to log in as the adm user directly. All users should be given unique logon ids to ensure traceability and accountability.
Solution
Change the login and remote login user flags to disable admuser access-
chuser login=false rlogin=false adm
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Unix.