Cisco IOS Switch NDM Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-APP-000164-NDM-000252
Group -
SRG-APP-000166-NDM-000254
Group -
SRG-APP-000167-NDM-000255
Group -
SRG-APP-000168-NDM-000256
Group -
SRG-APP-000169-NDM-000257
Group -
SRG-APP-000170-NDM-000329
Group -
SRG-APP-000171-NDM-000258
Group -
SRG-APP-000190-NDM-000267
Group -
SRG-APP-000319-NDM-000283
Group -
SRG-APP-000357-NDM-000293
Group -
SRG-APP-000360-NDM-000295
Group -
The Cisco switch must be configured to generate an alert for all audit failure events.
It is critical for the appropriate personnel to be aware if a system is at risk of failing to process audit logs as required. Without a real-time alert, security personnel may be unaware of an impe...Rule Medium Severity -
SRG-APP-000373-NDM-000298
Group -
SRG-APP-000395-NDM-000310
Group -
The Cisco switch must be configured to authenticate SNMP messages using a FIPS-validated Keyed-Hash Message Authentication Code (HMAC).
Without authenticating devices, unidentified or unknown devices may be introduced, thereby facilitating malicious activity. Bidirectional authentication provides stronger safeguards to validate the...Rule Medium Severity -
SRG-APP-000395-NDM-000310
Group -
The Cisco switch must be configured to encrypt SNMP messages using a FIPS 140-2 approved algorithm.
Without the strong encryption that is provided by the SNMP Version 3 User-based Security Model (USM), an unauthorized user can gain access to network management information that can be used to crea...Rule Medium Severity -
SRG-APP-000395-NDM-000347
Group -
SRG-APP-000411-NDM-000330
Group -
SRG-APP-000412-NDM-000331
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.