-
Bug
-
Resolution: Done
-
Medium
-
Casablanca Release
-
None
-
VNFRQTS Sprint 7
Current Requirement: The VNF provider MUST, where a VNF provider requires the assumption of permissions, such as root or administrator, first log in under their individual user login ID then switch to the other higher level account; or where the individual user login is infeasible, must login with an account with admin privileges in a way that uniquely identifies the individual performing the function.
Proposed Requirement: The VNF MUST not allow the assumption of the permissions of another account to mask individual accountability. For example, use SUDO when a user requires elevated permissions such as root or admin.
Reason: Clarification