STIGQter: STIG Summary: Authentication, Authorization, and Accounting Services (AAA) Security Requirements Guide Version: 1 Release: 2 Benchmark Date: 24 Jan 2020:

AAA Services used to authenticate privileged users for device management must be configured to connect to the management network.

DISA Rule

SV-95647r1_rule

Vulnerability Number

V-80937

Group Title

SRG-APP-000516-AAA-000630

Rule Version

SRG-APP-000516-AAA-000630

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure AAA Services used to authenticate privileged users for device management to connect to the management network.

Check Contents

If AAA Services are not used for authentication of privileged users to AAA Services, this is not applicable.

Verify AAA Services are configured to connect to the management network. Confirm AAA Services are not dual-homed by physically inspecting the physical LAN connection.

If AAA Services are configured to connect to a non-management network, this is a finding.

Vulnerability Number

V-80937

Documentable

False

Rule Version

SRG-APP-000516-AAA-000630

Severity Override Guidance

If AAA Services are not used for authentication of privileged users to AAA Services, this is not applicable.

Verify AAA Services are configured to connect to the management network. Confirm AAA Services are not dual-homed by physically inspecting the physical LAN connection.

If AAA Services are configured to connect to a non-management network, this is a finding.

Check Content Reference

M

Target Key

3357

Comments