STIGQter STIGQter: STIG Summary: Arista MLS DCS-7000 Series NDM Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 25 Oct 2019:

The Arista Multilayer Switch must synchronize internal information system clocks to the authoritative time source when the time difference is greater than the organization-defined time period.

DISA Rule

SV-75321r1_rule

Vulnerability Number

V-60863

Group Title

SRG-APP-000372-NDM-000297

Rule Version

AMLS-NM-000270

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the network device to synchronize internal information system clocks to the authoritative time source when the time difference is greater than the organization-defined time period.

Configuration Example:
switch(config)#ntp server HOST
switch(config)#ntp server HOST prefer

Check Contents

Check the network device configuration to determine if the device synchronizes internal information system clocks to the authoritative time source when the time difference is greater than the organization-defined time period.

If this synchronization is not occurring when the time difference is greater than the organization-defined time period, this is a finding.

Verify with the "show NTP status" command, which shows the state of device synchronization.

Vulnerability Number

V-60863

Documentable

False

Rule Version

AMLS-NM-000270

Severity Override Guidance

Check the network device configuration to determine if the device synchronizes internal information system clocks to the authoritative time source when the time difference is greater than the organization-defined time period.

If this synchronization is not occurring when the time difference is greater than the organization-defined time period, this is a finding.

Verify with the "show NTP status" command, which shows the state of device synchronization.

Check Content Reference

M

Target Key

2825

Comments