STIGQter: STIG Summary: Forescout Network Device Management Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

Forescout must enforce password complexity by requiring that at least one numeric character be used.

DISA Rule

SV-230966r615886_rule

Vulnerability Number

V-230966

Group Title

SRG-APP-000168-NDM-000256

Rule Version

FORE-NM-000400

Severity

CAT II

CCI(s)

• CCI-000194 - The information system enforces password complexity by the minimum number of numeric characters used.

Weight

10

Fix Recommendation

Configure Forescout to require a minimum of one numeric character.

1. From the menu, select Tools >> Options >> CounterACT User Profiles >> Password and Sessions.
2. Check the third "password must contain at least" option.
3. Add a 1 (or higher) in the "digits" configuration box.

Check Contents

1. From the menu, select Tools >> Options >> CounterACT User Profiles >> Password and Sessions.
2. Verify the third "password must contain at least" is checked.
3. Verify there is 1 (or higher) in the "digits" configuration box.

If the Forescout does not enforce password complexity by requiring that at least one numeric character be used, this is a finding.

Vulnerability Number

V-230966

Documentable

False

Rule Version

FORE-NM-000400

Severity Override Guidance

1. From the menu, select Tools >> Options >> CounterACT User Profiles >> Password and Sessions.
2. Verify the third "password must contain at least" is checked.
3. Verify there is 1 (or higher) in the "digits" configuration box.

If the Forescout does not enforce password complexity by requiring that at least one numeric character be used, this is a finding.

Check Content Reference

M

Target Key

5245

Comments