STIGQter: STIG Summary: Riverbed SteelHead CX v8 NDM Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 25 Oct 2019:

Riverbed Optimization System (RiOS) must enforce a minimum 15-character password length.

DISA Rule

SV-77451r1_rule

Vulnerability Number

V-62961

Group Title

SRG-APP-000164-NDM-000252

Rule Version

RICX-DM-000114

Severity

CAT II

CCI(s)

• CCI-000205 - The information system enforces minimum password length.

Weight

10

Fix Recommendation

Configure RiOS to enforce a minimum 15-character password length.

Navigate to the device Management Console
Navigate to Configure >> Security >> Password Policy

Set the value of "Minimum Password Length:" to "15"

Click "Apply"
Navigate to the top of the web page and click "Save" to save these settings permanently

Check Contents

Verify that RiOS is configured to enforce a minimum 15-character password length.

Navigate to the device Management Console
Navigate to Configure >> Security >> Password Policy

Verify that "Minimum Password Length:" is set to "15"

If "Minimum Password Length:" is not set to "15", this is a finding.

Vulnerability Number

V-62961

Documentable

False

Rule Version

RICX-DM-000114

Severity Override Guidance

Verify that RiOS is configured to enforce a minimum 15-character password length.

Navigate to the device Management Console
Navigate to Configure >> Security >> Password Policy

Verify that "Minimum Password Length:" is set to "15"

If "Minimum Password Length:" is not set to "15", this is a finding.

Check Content Reference

M

Target Key

2931

Comments