STIGQter: STIG Summary: HP FlexFabric Switch NDM Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 24 Jul 2020:

The HP FlexFabric Switch must prohibit password reuse for a minimum of five generations.

DISA Rule

SV-80695r1_rule

Vulnerability Number

V-66205

Group Title

SRG-APP-000165-NDM-000253

Rule Version

HFFS-ND-000054

Severity

CAT II

CCI(s)

• CCI-000200 - The information system prohibits password reuse for the organization-defined number of generations.

Weight

10

Fix Recommendation

Configure the HP FlexFabric Switch server to prohibit password reuse for a minimum of five generations.

[HP] password-control enable
[HP] password-control history 5

Check Contents

Determine if the HP FlexFabric Switch prohibits password reuse for a minimum of five generations.

[HP] display password-control

Global password control configurations:
Password control: Enabled
Password aging: Enabled (90 days)
Password length: Enabled (10 characters)
Password composition: Enabled (1 types, 1 characters per type)
Password history: Enabled (max history records: 4)

If the HP FlexFabric Switch or its associated authentication server does not prohibit password reuse for a minimum of five generations, this is a finding.

Vulnerability Number

V-66205

Documentable

False

Rule Version

HFFS-ND-000054

Severity Override Guidance

Determine if the HP FlexFabric Switch prohibits password reuse for a minimum of five generations.

[HP] display password-control

Global password control configurations:
Password control: Enabled
Password aging: Enabled (90 days)
Password length: Enabled (10 characters)
Password composition: Enabled (1 types, 1 characters per type)
Password history: Enabled (max history records: 4)

If the HP FlexFabric Switch or its associated authentication server does not prohibit password reuse for a minimum of five generations, this is a finding.

Check Content Reference

M

Target Key

2971

Comments