STIGQter STIGQter: STIG Summary: Arista MLS DCS-7000 Series NDM Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 25 Oct 2019:

The Arista Multilayer Switch account of last resort must have a password with a length of 15 characters.

DISA Rule

SV-75289r1_rule

Vulnerability Number

V-60833

Group Title

SRG-APP-000164-NDM-000252

Rule Version

AMLS-NM-000110

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the Arista Multilayer Switch account of last resort with a password with a length of at least 15 characters.

To configure the password minimum length, enter the following commands:

configure
management security
password minimum length 15

Check Contents

Review the Arista Multilayer Switch configuration for the account of last resort with full access to the network device.

If the account of last resort does not require a password length of at least 15 characters, this is a finding.

To verify the setting is correct, run the "show running-config" command on the switch. Under the section "management security", the configuration statement "password minimum length 15" must be present, with a value set to 15 or higher.

Vulnerability Number

V-60833

Documentable

False

Rule Version

AMLS-NM-000110

Severity Override Guidance

Review the Arista Multilayer Switch configuration for the account of last resort with full access to the network device.

If the account of last resort does not require a password length of at least 15 characters, this is a finding.

To verify the setting is correct, run the "show running-config" command on the switch. Under the section "management security", the configuration statement "password minimum length 15" must be present, with a value set to 15 or higher.

Check Content Reference

M

Target Key

2825

Comments