AnsweredAssumed Answered

Disable NFS client unless documented need and ensusre NFS server does not have root=x and anon=x export options

Question asked by jsankr on Feb 17, 2012
Latest reply on Mar 9, 2012 by Jason Creech
i have a requirement for "Disable  NFS client unless documented need and ensusre NFS server does not have root=x  and anon=x export options" in Policy compliance for AIX.

 

I searched for the exact matches, but I hardly find the 3 Control IDs matching. Which are not matching my requirement of checking the disable status of NFS client first. Secondly, there is a Control ID for checking anon=x status in /etc/exports file.

 

1399 status of NFS client

3562 Status of the 'NFS UID Mapping (anonuid)' setting

1286 Status of the 'NFS Server' daemon

 

The above Status CIDs output are passed for both active and inactive nfsd deamon on AIX.

 

I need your help in finding the exact match or how to proceed.

Outcomes