STIGQter: STIG Summary: HP FlexFabric Switch NDM Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 24 Jul 2020:

The HP FlexFabric Switch must provide audit record generation capability for DoD-defined auditable events within the HP FlexFabric Switch.

DISA Rule

SV-80657r1_rule

Vulnerability Number

V-66167

Group Title

SRG-APP-000089-NDM-000221

Rule Version

HFFS-ND-000022

Severity

CAT III

CCI(s)

• CCI-000169 - The information system provides audit record generation capability for the auditable events defined in AU-2 a. at organization-defined information system components.

Weight

10

Fix Recommendation

Configure the HP FlexFabric Switch to provide audit record generation capability for DoD-defined auditable events within the HP FlexFabric Switch.

[HP] info-center security-logfile enable
[HP] info-center security-logfile frequency 30 (in seconds)
[HP] info-center security-logfile size-quota 5 (in MB)
[HP] info-center security-logfile alarm-threshold 90 (in %)

Check Contents

Determine if the HP FlexFabric Switch provides audit record generation capability for DoD-defined auditable events within the HP FlexFabric Switch. The list of events for which the device will provide an audit record generation capability is outlined in the vulnerability discussion.

[HP] display security-logfile summary

summary Display summary information of the security log file

Security log file: Disabled
Security log file size quota: 10 MB
Security log file directory: cfa0:/seclog
Alarm threshold: 80%
Current usage: 0%
Writing frequency: 24 hour 0 min 0 sec

If the HP FlexFabric Switch does not provide audit record generation capability for DoD-defined auditable events within the HP FlexFabric Switch, this is a finding.

Vulnerability Number

V-66167

Documentable

False

Rule Version

HFFS-ND-000022

Severity Override Guidance

Determine if the HP FlexFabric Switch provides audit record generation capability for DoD-defined auditable events within the HP FlexFabric Switch. The list of events for which the device will provide an audit record generation capability is outlined in the vulnerability discussion.

[HP] display security-logfile summary

summary Display summary information of the security log file

Security log file: Disabled
Security log file size quota: 10 MB
Security log file directory: cfa0:/seclog
Alarm threshold: 80%
Current usage: 0%
Writing frequency: 24 hour 0 min 0 sec

If the HP FlexFabric Switch does not provide audit record generation capability for DoD-defined auditable events within the HP FlexFabric Switch, this is a finding.

Check Content Reference

M

Target Key

2971

Comments