Skip to content
Log In

Storage Area Network STIG

Rules, Groups, and Values defined within the XCCDF Benchmark

  • Prior to installing SAN components (servers, switches, and management stations) onto the DOD network infrastructure, components are not configured to meet the applicable STIG requirements.

    Many SAN components (servers, switches, management stations) have security requirements from other STIGs. It will be verified that all requirement are complied with. The IAO/NSO will ensure that p...
    Rule Medium Severity
    Show

  • Servers and hosts OS STIG Requirements

    Group
    Show

  • Servers and other hosts are not compliant with applicable Operating System (OS) STIG requirements.

    SAN servers and other hosts are hardware software combinations that actually run under the control of a native OS found on the component. This OS may be UNIX, LNIX, Windows, etc. The underlying O...
    Rule Medium Severity
    Show

  • Anti-virus on servers and host.

    Group
    Show

  • Vendor supported, DOD approved, anti-virus software is not installed and configured on all SAN servers in accordance with the applicable operating system STIG on SAN servers and management devices and kept up-to-date with the most recent virus definition tables.

    The SAN servers and other hosts are subject to virus and worm attacks as are any systems running an OS. If the anti-virus software is not installed or the virus definitions are not maintained on t...
    Rule High Severity
    Show

  • SAN Topology Drawing

    Group
    Show

  • SAN Fabric Zoning List Deny-By-Default

    Group
    Show

  • The default zone visibility setting is not set to “none”.

    If the default zone visibility setting is set to "none", new clients brought into the SAN will not be allowed access to any SAN zone they are not explicitly placed into. The IAO/NSO will ensure tha...
    Rule Medium Severity
    Show

  • A current drawing of the site’s SAN topology that includes all external and internal links, zones, and all interconnected equipment is not being maintained.

    A drawing of the SAN topology gives the IAO and other interested individuals a pictorial representation of the SAN. This can be helpful in diagnosing potential security problems. The IAO/NSO will ...
    Rule Medium Severity
    Show

  • Physical Access to SAN Network Devices

    Group
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules