STIGQter: STIG Summary: HPE 3PAR StoreServ 3.2.x Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 28 Jul 2017:

The storage system must, for networked systems, compare internal information system clocks at least every 24 hours with a server which is synchronized to one of the redundant United States Naval Observatory (USNO) time servers, or a time server designated for the appropriate DoD network (NIPRNet/SIPRNet), and/or the Global Positioning System (GPS).

DISA Rule

SV-85121r1_rule

Vulnerability Number

V-70499

Group Title

SRG-OS-000355-GPOS-00143

Rule Version

HP3P-32-001400

Severity

CAT III

CCI(s)

• CCI-001891 - The information system compares internal information system clocks on an organization-defined frequency with an organization-defined authoritative time source.

Weight

10

Fix Recommendation

Enable NTP on the system by entering the following command:

cli% setnet ntp <server_addr>

Check Contents

Verify NTP is operational by entering the following command:

cli% shownet
< multiple lines of heading, and node network information>
NTP server : <ip address of ntp server>

If one of the lines of the output does not show the correct NTP server IP address, this is a finding.

Vulnerability Number

V-70499

Documentable

False

Rule Version

HP3P-32-001400

Severity Override Guidance

Verify NTP is operational by entering the following command:

cli% shownet
< multiple lines of heading, and node network information>
NTP server : <ip address of ntp server>

If one of the lines of the output does not show the correct NTP server IP address, this is a finding.

Check Content Reference

M

Target Key

3013

Comments