STIGQter: STIG Summary: Palo Alto Networks NDM Security Technical Implementation Guide Version: 1 Release: 4 Benchmark Date: 24 Jan 2020:

Administrators in the role of either Security Administrator or Cryptographic Administrator must not also have the role of Audit Administrator.

DISA Rule

SV-77235r1_rule

Vulnerability Number

V-62745

Group Title

SRG-APP-000267-NDM-000273

Rule Version

PANW-NM-000075

Severity

CAT II

CCI(s)

• CCI-001314 - The information system reveals error messages only to organization-defined personnel or roles.

Weight

10

Fix Recommendation

Do not assign or configure more than one account to the same Administrator.

Check Contents

If the Palo Alto Networks security platform has any accounts where the same person is in the role of both Security Administrator and Cryptographic Administrator, this is a finding.

Note: Each account can only have one role, but individuals, either accidentally or intentionally, may have more than one account.

Vulnerability Number

V-62745

Documentable

False

Rule Version

PANW-NM-000075

Severity Override Guidance

If the Palo Alto Networks security platform has any accounts where the same person is in the role of both Security Administrator and Cryptographic Administrator, this is a finding.

Note: Each account can only have one role, but individuals, either accidentally or intentionally, may have more than one account.

Check Content Reference

M

Target Key

2811

Comments