Network WLAN Controller Platform Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
The WLAN inactive/idle session timeout must be set for 30 minutes or less.
A WLAN session that never terminates due to inactivity may allow an opening for an adversary to highjack the session to obtain access to the network.Rule Medium Severity -
WLAN EAP-TLS implementation must use certificate-based PKI authentication to connect to DoD networks.
DoD certificate-based PKI authentication is strong, two-factor authentication that relies on carefully evaluated cryptographic modules. Implementations of EAP-TLS that are not integrated with certi...Rule Medium Severity -
SRG-NET-000514
Group -
SRG-NET-000070
Group -
WLAN must use EAP-TLS.
EAP-TLS provides strong cryptographic mutual authentication and key distribution services not found in other EAP methods, and thus provides significantly more protection against attacks than other ...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules