The VNF MUST, after a successful login at command line or a GUI, display the last valid login date and time and the number of unsuccessful attempts since then made with that user’s ID. This requirement is only applicable when the user account is defined locally in the VNF.
Reason for Removal
1. This requirement relies on a human reading the last valid login date/time and taking action, which is unreliable.
2. In general, authentication is performed using a PAM module not directly by the VNF, so the VNF will not have information about the last valid login or the number of unsuccessful login attempts.
3. Modern systems include logging and integration of logging with a security monitoring platform and there are VNF security requirements for integration with a security event manager.
|103900,5||VFN Requirements Security Changes Round 2||master||vnfrqts/requirements||Status: MERGED||+2||+1|