AOS wireless local area network (WLAN) service set identifiers (SSIDs) must be changed from the manufacturer's default to a pseudo random word that does not identify the unit, base, organization, etc.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-266708 | ARBA-NT-001660 | SV-266708r1040614_rule | CCI-000366 | low |
| Description | ||||
| An SSID that identifies the unit, site, or purpose of the WLAN or is set to the manufacturer default may cause an operational security vulnerability. | ||||
| STIG | Date | |||
| HPE Aruba Networking AOS Wireless Security Technical Implementation Guide | 2024-10-29 | |||
Details
Check Text (C-266708r1040614_chk)
Review AOS WLAN configuration by navigating to Configuration >> WLANs.
If the WLAN SSIDs listed in the "NAME (SSID)" column are not pseudo random words, this is a finding.
Fix Text (F-70535r1040613_fix)
Configure AOS using the web interface:
1. Navigate to Configuration >> WLANs and click on the "+" sign to create a guest WLAN.
2. Configure the SSID with a pseudo random word.
3. Finish configuring the WLAN.
4. Click Pending Changes >> Deploy Changes.