SOLVED
Hi @AjinS !
AFAIK aux0 is the console port itself on 5800. If this is not the case, tell me the DEVICE_NAME from the 'display device manuinfo' output.
Of course it's not possible. This port is your only access to the swtich if it loses network connection or something goes wrong during a software update. I am afraid your security auditors don't fully understand how this port works and why it is crucial to keep it up. Did they assess a possibility of locking the port using AAA? Just put authentication on the port and it won't be accessible to unauthorized personnel.
Again, they don't understand what is AUX port in 5800. Those guys think that 5800 is like an old Cisco switch where you have console port (to connect a management station directly with a console cable) and AUX (auxillary) port which is used to connect CSU/DSU or in other words modem in order to get a remote access to the switch. I am sure they think the AUX port in 5800 is like the AUX port in Cisco, because they mention 'remote administration' and 'call-back facility'. But the thing is IS NOT. The AUX port in 5800 is the only console port available. It is not used for 'remote administration', like additional AUX port in Cisco.
Therefore as you CANNOT disable con0 port in Cisco IOS-based switch, same way you CANNOT disable aux0 port in 5800. I know the 'aux' term confuses people, maybe that's why in Comware 7 that port is named 'con0', but try to explain this to your auditors, I am sure they will understand the situation and will adapt their recommendation accordingly.