Skip to content
Log In

CCI-002205

Uniquely identify and authenticate source by organization, system, application, service, and/or individual for information transfer.

The Arista Multilayer Switch must enable neighbor router authentication for control plane protocols except RIP.

1 rule found Severity: Medium

Logo

The HP FlexFabric Switch must enable neighbor authentication for all control plane protocols.

1 rule found Severity: Medium

Logo

The NSX-T Tier-0 Gateway must be configured to implement message authentication for all control plane protocols.

1 rule found Severity: Medium

Logo

The NSX-T Tier-0 Gateway must be configured to use a unique key for each autonomous system (AS) with which it peers.

1 rule found Severity: Medium

Logo

The Arista router must be configured to authenticate all routing protocol messages using NIST-validated FIPS 198-1 message authentication code algorithm.

1 rule found Severity: Medium

Logo

The Arista BGP router must be configured to use a unique key for each autonomous system (AS) that it peers with.

1 rule found Severity: Medium

Logo

The Cisco switch must be configured to enable routing protocol authentication using FIPS 198-1 algorithms with keys not exceeding 180 days of lifetime.

2 rules found Severity: Medium

Logo

The Cisco router must be configured to enable routing protocol authentication using FIPS 198-1 algorithms with keys not exceeding 180 days of lifetime.

3 rules found Severity: Medium

Logo

The Cisco BGP router must be configured to use a unique key for each autonomous system (AS) that it peers with.

3 rules found Severity: Medium

Logo

The Cisco BGP switch must be configured to use a unique key for each autonomous system (AS) that it peers with.

2 rules found Severity: Medium

Logo

The Juniper router must be configured to implement message authentication for all control plane protocols.

2 rules found Severity: Medium

Logo

The Juniper BGP router must be configured to use a unique key for each autonomous system (AS) that it peers with.

2 rules found Severity: Medium

Logo

The Juniper router must be configured to use keys with a duration not exceeding 180 days for authenticating routing protocol messages.

2 rules found Severity: Medium

Logo

The ALG that is part of a CDS must uniquely identify and authenticate source by organization, system, application, and/or individual for information transfer.

1 rule found Severity: Medium

Logo

The Cisco switch must be configured to implement message authentication for all control plane protocols.

1 rule found Severity: Medium

Logo

The Cisco switch must be configured to use keys with a duration not exceeding 180 days for authenticating routing protocol messages.

1 rule found Severity: Medium

Logo

The NSX Tier-0 Gateway router must be configured to implement message authentication for all control plane protocols.

1 rule found Severity: High

Logo

The NSX Tier-0 Gateway must be configured to use a unique password for each autonomous system (AS) with which it peers.

1 rule found Severity: Medium

Logo

The NSX Tier-0 Gateway router must be configured to use encryption for border gateway protocol (BGP) routing protocol authentication.

1 rule found Severity: High

Logo