STIGQter: STIG Summary: Riverbed SteelHead CX v8 NDM Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 25 Oct 2019:

Riverbed Optimization System (RiOS) must enforce password complexity by requiring that at least one numeric character be used.

DISA Rule

SV-77459r1_rule

Vulnerability Number

V-62969

Group Title

SRG-APP-000169-NDM-000257

Rule Version

RICX-DM-000118

Severity

CAT II

CCI(s)

• CCI-001619 - The information system enforces password complexity by the minimum number of special characters used.

Weight

10

Fix Recommendation

Configure RiOS to enforce a password complexity that requires at least one special character.

Navigate to the device Management Console
Navigate to Configure >> Security >> Password Policy

Set the value of "Minimum Special Characters:" to "1"

Click "Apply"
Navigate to the top of the web page and click "Save" to save these settings permanently

Check Contents

Verify that RiOS is configured to enforce password complexity that requires at least one special character.

Navigate to the device Management Console
Navigate to Configure >> Security >> Password Policy

Verify that "Minimum Special Characters:" is set to "1"

If "Minimum Special Characters:" is not set to "1", this is a finding.

Vulnerability Number

V-62969

Documentable

False

Rule Version

RICX-DM-000118

Severity Override Guidance

Verify that RiOS is configured to enforce password complexity that requires at least one special character.

Navigate to the device Management Console
Navigate to Configure >> Security >> Password Policy

Verify that "Minimum Special Characters:" is set to "1"

If "Minimum Special Characters:" is not set to "1", this is a finding.

Check Content Reference

M

Target Key

2931

Comments