The network device must employ automated mechanisms to centrally verify authentication settings.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-55303	SRG-APP-000516-NDM-000338	SV-69549r1_rule		Medium

Description
The use of authentication servers or other centralized management servers for providing centralized authentication services is required for network device management. Maintaining local administrator accounts for daily usage on each network device without centralized management is not scalable or feasible. Without centralized management, it is likely that credentials for some network devices will be forgotten, leading to delays in administration, which itself leads to delays in remediating production problems and in addressing compromises in a timely fashion.

Description

The use of authentication servers or other centralized management servers for providing centralized authentication services is required for network device management. Maintaining local administrator accounts for daily usage on each network device without centralized management is not scalable or feasible. Without centralized management, it is likely that credentials for some network devices will be forgotten, leading to delays in administration, which itself leads to delays in remediating production problems and in addressing compromises in a timely fashion.

STIG	Date
Network Device Management Security Requirements Guide	2017-07-07

Details

Check Text ( C-55923r1_chk )
Review the network device configuration to determine if it employs automated mechanisms to centrally verify authentication settings. If authentication settings are not verified centrally using automated mechanisms, this is a finding.

Fix Text (F-60167r1_fix)
Configure the network device to employ automated mechanisms to centrally verify authentication settings.