Individual user accounts with passwords are not set up and maintained for the SAN fabric switch.
An XCCDF Rule
Description
<VulnDiscussion>Without identification and authentication unauthorized users could reconfigure the SAN or disrupt its operation by logging in to the fabric switch and executing unauthorized commands. The IAO/NSO will ensure individual user accounts with passwords are set up and maintained for the SAN fabric switch in accordance with the guidance contained in Appendix B, CJCSM and the Network Infrastructure STIG.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts>The IAO/NSO will ensure that individual user accounts with passwords are set up and maintained in accordance with the guidance contained in Appendix B, Chairman Of The Joint Chiefs of Staff Manual CJCSM 6510.1 and the DODI 8500.2.</PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility>Information Assurance Officer</Responsibility><Responsibility>Network Security Officer</Responsibility><IAControls>IAIA-1, IAIA-2</IAControls>
- ID
- SV-6752r1_rule
- Severity
- Medium
- Updated
Remediation - Manual Procedure
Develop a plan to reconfigure the SAN fabric switch to require user accounts and passwords. This plan also needs to include the creation and distribution of user accounts and passwords for each administrator who requires access to the SAN fabric switch. Obtain CM approval of the plan and then implement the plan.