By default, the hardened appliances allow you to use the console to log in directly as root. As a security best practice, you can disable direct logins after you create an administrative account for nonrepudiation and test it for wheel access by using the su-root command.

Prerequisites

Procedure

  1. Log in as root and navigate to the /etc/securetty file.

    You can access this file from the command prompt.

  2. Replace the tty1 entry with console.