CCI-002205
Uniquely identify and authenticate source by organization, system, application, service, and/or individual for information transfer.
The Arista Multilayer Switch must enable neighbor router authentication for control plane protocols except RIP.
1 rule found Severity: Medium

1 rule found Severity: Medium

The NSX-T Tier-0 Gateway must be configured to implement message authentication for all control plane protocols.
1 rule found Severity: Medium

The NSX-T Tier-0 Gateway must be configured to use a unique key for each autonomous system (AS) with which it peers.
1 rule found Severity: Medium

The Arista router must be configured to authenticate all routing protocol messages using NIST-validated FIPS 198-1 message authentication code algorithm.
1 rule found Severity: Medium

The Arista BGP router must be configured to use a unique key for each autonomous system (AS) that it peers with.
1 rule found Severity: Medium

The Cisco switch must be configured to enable routing protocol authentication using FIPS 198-1 algorithms with keys not exceeding 180 days of lifetime.
2 rules found Severity: Medium

The Cisco router must be configured to enable routing protocol authentication using FIPS 198-1 algorithms with keys not exceeding 180 days of lifetime.
3 rules found Severity: Medium

The Cisco BGP router must be configured to use a unique key for each autonomous system (AS) that it peers with.
3 rules found Severity: Medium

The Cisco BGP switch must be configured to use a unique key for each autonomous system (AS) that it peers with.
2 rules found Severity: Medium

The Juniper router must be configured to implement message authentication for all control plane protocols.
2 rules found Severity: Medium

The Juniper BGP router must be configured to use a unique key for each autonomous system (AS) that it peers with.
2 rules found Severity: Medium

The Juniper router must be configured to use keys with a duration not exceeding 180 days for authenticating routing protocol messages.
2 rules found Severity: Medium

The ALG that is part of a CDS must uniquely identify and authenticate source by organization, system, application, and/or individual for information transfer.
1 rule found Severity: Medium

The Cisco switch must be configured to implement message authentication for all control plane protocols.
1 rule found Severity: Medium

The Cisco switch must be configured to use keys with a duration not exceeding 180 days for authenticating routing protocol messages.
1 rule found Severity: Medium

The NSX Tier-0 Gateway router must be configured to implement message authentication for all control plane protocols.
1 rule found Severity: High

The NSX Tier-0 Gateway must be configured to use a unique password for each autonomous system (AS) with which it peers.
1 rule found Severity: Medium
