Network management ports on the SAN fabric switches except those needed to support the operational commitments of the sites are not disabled.

An XCCDF Rule

Details
Profiles

Description

Enabled network management ports that are not required expose the SAN fabric switch and the entire network to unnecessary vulnerabilities. By disabling these unneeded ports the exposure profile of the device and network is diminished. The IAO/NSO will disable all network management ports on the SAN fabric switches except those needed to support the operational commitments of the sites.

Property	Value
Responsibility	Information Assurance Officer
IA Controls	DCBP-1

ID: SV-6769r1_rule
Version: SAN04.012.00
Severity: Medium
Updated: 15 days ago

Remediation Templates

Develop a plan to locate and disable all network management ports that are not required to support the operational commitments of the sites.  Obtain CM approval of the plan and then execute the plan.

Network management ports on the SAN fabric switches except those needed to support the operational commitments of the sites are not disabled.

Description

Remediation Templates

A Manual Procedure