STIGQter: STIG Summary: Network Device Management Security Requirements Guide Version: 4 Release: 1 Benchmark Date: 23 Apr 2021:

The network device must prohibit the use of cached authenticators after an organization-defined time period.

DISA Rule

SV-202115r400123_rule

Vulnerability Number

V-202115

Group Title

SRG-APP-000400

Rule Version

SRG-APP-000400-NDM-000313

Severity

CAT II

CCI(s)

• CCI-002007 - The information system prohibits the use of cached authenticators after an organization-defined time period.

Weight

10

Fix Recommendation

Configure the network device or its associated authentication server to prohibit the use of cached authenticators after an organization-defined time period.

Check Contents

Review the network device configuration to determine if the network device or its associated authentication server prohibits the use of cached authenticators after an organization-defined time period.

If cached authenticators are used after an organization-defined time period, this is a finding.

Vulnerability Number

V-202115

Documentable

False

Rule Version

SRG-APP-000400-NDM-000313

Severity Override Guidance

Review the network device configuration to determine if the network device or its associated authentication server prohibits the use of cached authenticators after an organization-defined time period.

If cached authenticators are used after an organization-defined time period, this is a finding.

Check Content Reference

M

Target Key

2890

Comments