Cisco ISE NDM Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
The Cisco ISE must be configured to disable Wireless Setup for production systems.
ISE Wireless Setup is beta software so is not authorized for use in DoD. Wireless Setup is disabled by default after fresh installation of Cisco ISE. If you upgrade ISE from a previous version, th...Rule High Severity -
SRG-APP-000156-NDM-000250
Group -
SRG-APP-000400-NDM-000313
Group -
SRG-APP-000179-NDM-000265
Group -
SRG-APP-000411-NDM-000330
Group -
SRG-APP-000411-NDM-000330
Group -
SRG-APP-000412-NDM-000331
Group -
The Cisco ISE must be configured to implement cryptographic mechanisms using a FIPS 140-2 validated algorithm to protect the confidentiality of remote maintenance sessions.
This requires the use of secure protocols instead of their unsecured counterparts, such as SSH instead of telnet, SCP instead of FTP, and HTTPS instead of HTTP. If unsecured protocols (lacking cryp...Rule High Severity -
SRG-APP-000190-NDM-000267
Group -
SRG-APP-000224-NDM-000270
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.