STIGQter: STIG Summary: WLAN Controller Security Technical Implementation Guide (STIG) Version: 6 Release: 15 Benchmark Date: 26 Apr 2019:

The emergency administration account must be set to an appropriate authorization level to perform necessary administrative functions when the authentication server is not online.

DISA Rule

SV-16261r5_rule

Vulnerability Number

V-15434

Group Title

Emergency administration account privilege level is not set.

Rule Version

NET0441

Severity

CAT I

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Assign a privilege level to the emergency administration account to allow the administrator to perform necessary administrative functions when the authentication server is not online.

Check Contents

Review the emergency administration account configured on the network devices and verify that it has been assigned to a privilege level that will enable the administrator to perform necessary administrative functions when the authentication server is not online.

If the emergency administration account is configured for more access than needed to troubleshoot issues, this is a finding.

Vulnerability Number

V-15434

Documentable

False

Rule Version

NET0441

Severity Override Guidance

Review the emergency administration account configured on the network devices and verify that it has been assigned to a privilege level that will enable the administrator to perform necessary administrative functions when the authentication server is not online.

If the emergency administration account is configured for more access than needed to troubleshoot issues, this is a finding.

Check Content Reference

M

Responsibility

Information Assurance Officer

Target Key

1538

Comments