STIGQter: STIG Summary: WLAN Controller Security Technical Implementation Guide (STIG) Version: 6 Release: 15 Benchmark Date: 26 Apr 2019:

Network devices must be password protected.

DISA Rule

SV-3012r4_rule

Vulnerability Number

V-3012

Group Title

Network element is not password protected.

Rule Version

NET0230

Severity

CAT I

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure the network devices so it will require a password to gain administrative access to the device.

Check Contents

Review the network devices configuration to determine if administrative access to the device requires some form of authentication--at a minimum a password is required.

If passwords aren't used to administrative access to the device, this is a finding.

Vulnerability Number

V-3012

Documentable

False

Rule Version

NET0230

Severity Override Guidance

Review the network devices configuration to determine if administrative access to the device requires some form of authentication--at a minimum a password is required.

If passwords aren't used to administrative access to the device, this is a finding.

Check Content Reference

M

Responsibility

Information Assurance Officer

Target Key

1538

Comments