Catalogs
Reference Schemes
CCI: Control Correlation Identifier
CCI-004060

CCI-004060

For password-based authentication, update the list of passwords when organizational passwords are suspected to have been compromised directly or indirectly.

Details
Associations

The Cisco ISE must be configured to use an external authentication server to authenticate administrators prior to granting administrative access.

1 rule found Severity: Medium

The DNS server implementation must, for password-based authentication, update the list of passwords when organizational passwords are suspected to have been compromised directly or indirectly.

1 rule found Severity: Medium

The ICS must be configured to prevent nonprivileged users from executing privileged functions.

1 rule found Severity: High

The Juniper EX switch must be configured to use an authentication server for the purpose of authenticating users prior to granting administrative access.

1 rule found Severity: High

The network device must be configured to update the list of passwords when organizational passwords are suspected to have been compromised directly or indirectly for password-based authentication.

1 rule found Severity: Medium

The TippingPoint SMS must be configured to use an authentication server for the purpose of authenticating users prior to granting administrative access and to enforce access restrictions.

1 rule found Severity: High

The web server must, for password-based authentication, update the list of passwords when organizational passwords are suspected to have been compromised directly or indirectly.

1 rule found Severity: Medium

For password-based authentication, AAA Services must be configured to update the list of passwords when organizational passwords are suspected to have been compromised directly or indirectly.

1 rule found Severity: Medium

The Central Log Server must for password-based authentication, update the list of passwords when organizational passwords are suspected to have been compromised directly or indirectly.

1 rule found Severity: Medium

The container platform must for password-based authentication, update the list of passwords when organizational passwords are suspected to have been compromised directly or indirectly.

1 rule found Severity: Medium

The DBMS must, for password-based authentication, update the list of passwords when organizational passwords are suspected to have been compromised directly or indirectly.

1 rule found Severity: Medium

Forescout must be configured to use an authentication server for the purpose of authenticating users prior to granting administrative access.

1 rule found Severity: Medium

The Juniper SRX Services Gateway must be configured to use an authentication server to centrally manage authentication and logon settings for remote and nonlocal access.

1 rule found Severity: Medium

The Mainframe Product must, for password-based authentication, update the list of passwords when organizational passwords are suspected to have been compromised directly or indirectly.

1 rule found Severity: Medium