AAA Services used to authenticate privileged users for device management must be configured to connect to the management network.
An XCCDF Rule
Description
<VulnDiscussion>Using standardized authentication protocols such as RADIUS, TACACS+, and Kerberos, an authentication server provides centralized and robust authentication services for the management of network components. In order to control access to the servers as well as monitor traffic to them, the authentication servers should only be connected to the management network.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-95647r1_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
Configure AAA Services used to authenticate privileged users for device management to connect to the management network.