Skip to content
Log In

HP FlexFabric Switch NDM Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • SRG-APP-000100-NDM-000230

    Group
    Show

  • The HP FlexFabric Switch must generate audit records containing information that establishes the identity of any individual or process associated with the event.

    Without information that establishes the identity of the subjects (i.e., administrators or processes acting on behalf of administrators) associated with the events, security personnel cannot determ...
    Rule Low Severity
    Show

  • SRG-APP-000101-NDM-000231

    Group
    Show

  • The HP FlexFabric Switch must generate audit records containing the full-text recording of privileged commands.

    Reconstruction of harmful events or forensic analysis is not possible if audit records do not contain enough information. Organizations consider limiting the additional audit information to only ...
    Rule Low Severity
    Show

  • SRG-APP-000116-NDM-000234

    Group
    Show

  • SRG-APP-000504-NDM-000321

    Group
    Show

  • SRG-APP-000118-NDM-000235

    Group
    Show

  • The HP FlexFabric Switch must protect audit information from any type of unauthorized read access.

    Audit information includes all information (e.g., audit records, audit settings, and audit reports) needed to successfully audit information system activity. If audit data were to become compromis...
    Rule Medium Severity
    Show

  • SRG-APP-000119-NDM-000236

    Group
    Show

  • The HP FlexFabric Switch must protect audit information from unauthorized modification.

    Audit information includes all information (e.g., audit records, audit settings, and audit reports) needed to successfully audit network device activity. If audit data were to become compromised, ...
    Rule Medium Severity
    Show

  • SRG-APP-000120-NDM-000237

    Group
    Show

  • The HP FlexFabric Switch must protect audit information from unauthorized deletion.

    Audit information includes all information (e.g., audit records, audit settings, and audit reports) needed to successfully audit information system activity. If audit data were to become compromis...
    Rule Medium Severity
    Show

  • SRG-APP-000142-NDM-000245

    Group
    Show

  • SRG-APP-000163-NDM-000251

    Group
    Show

  • The HP FlexFabric Switch must disable identifiers (individuals, groups, roles, and devices) after 35 days of inactivity.

    Inactive identifiers pose a risk to network devices. Attackers that are able to exploit an inactive identifier can potentially obtain and maintain undetected access to the device. Owners of inactiv...
    Rule Medium Severity
    Show

  • SRG-APP-000164-NDM-000252

    Group
    Show

  • SRG-APP-000165-NDM-000253

    Group
    Show

  • The HP FlexFabric Switch must prohibit password reuse for a minimum of five generations.

    Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute-force attacks. To meet password policy requirements, passwords need t...
    Rule Medium Severity
    Show

  • SRG-APP-000166-NDM-000254

    Group
    Show

  • If multifactor authentication is not supported and passwords must be used, the HP FlexFabric Switch must enforce password complexity by requiring that at least one upper-case character be used.

    Use of a complex passwords helps to increase the time and resources required to compromise the password. Password complexity, or strength, is a measure of the effectiveness of a password in resisti...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules