STIGQter: STIG Summary: A10 Networks ADC NDM Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 15 Apr 2016:

The A10 Networks ADC must not have any shared accounts (other than the emergency administration account).

DISA Rule

SV-82539r1_rule

Vulnerability Number

V-68049

Group Title

SRG-APP-000148-NDM-000246

Rule Version

AADC-NM-000047

Severity

CAT II

CCI(s)

• CCI-000764 - The information system uniquely identifies and authenticates organizational users (or processes acting on behalf of organizational users).

Weight

10

Fix Recommendation

Do not configure any shared accounts, either on the A10 ADC itself or on the authentication servers. The only exception to this is the emergency administration account.

Check Contents

Review the device configuration.

Enter the following command to view all administrative accounts:
show admin detail

If there are any shared accounts other than the emergency administration account, this is a finding.

Obtain the list of accounts configured on the authentication server.

If there are any shared accounts other than the emergency administration account, this is a finding.

Vulnerability Number

V-68049

Documentable

False

Rule Version

AADC-NM-000047

Severity Override Guidance

Review the device configuration.

Enter the following command to view all administrative accounts:
show admin detail

If there are any shared accounts other than the emergency administration account, this is a finding.

Obtain the list of accounts configured on the authentication server.

If there are any shared accounts other than the emergency administration account, this is a finding.

Check Content Reference

M

Target Key

2915

Comments