STIGQter: STIG Summary: Cisco NX-OS Switch NDM Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 23 Apr 2021:

The Cisco switch must be configured to limit the number of concurrent management sessions to an organization-defined number.

DISA Rule

SV-220474r604141_rule

Vulnerability Number

V-220474

Group Title

SRG-APP-000001-NDM-000200

Rule Version

CISC-ND-000010

Severity

CAT II

CCI(s)

• CCI-000054 - The information system limits the number of concurrent sessions for each organization-defined account and/or account type to an organization-defined number of sessions.

Weight

10

Fix Recommendation

Configure the switch to limit the number of concurrent management sessions to an organization-defined number as shown in the example below:

SW4(config)# line vty
SW4(config)# session-limit 2

Check Contents

Review the switch configuration to determine if concurrent management sessions are limited as show in the example below:

line vty
session-limit 2

If the switch is not configured to limit the number of concurrent management sessions, this is a finding.

Vulnerability Number

V-220474

Documentable

False

Rule Version

CISC-ND-000010

Severity Override Guidance

Review the switch configuration to determine if concurrent management sessions are limited as show in the example below:

line vty
session-limit 2

If the switch is not configured to limit the number of concurrent management sessions, this is a finding.

Check Content Reference

M

Target Key

4066

Comments