The Cisco ISE must be running an operating system release that is currently supported by the vendor.
An XCCDF Rule
Description
<VulnDiscussion>Network devices running an unsupported operating system lack current security fixes required to mitigate the risks associated with recent vulnerabilities. The recommended best practice is for the organization to implement a patch management process for Junos OS. The process should involve testing and verification of the authenticity of vendor-provided updated. These files are then placed into a repository which is protected by access, confidentiality, and integrity control. System administrators can then initiate firmware/software updates by pointing the device to this repository. There is no need for the device to perform additional certificate verification.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-242634r879887_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
Install the latest approved update of the CISCO ADE-OS software.
1. Click the "Upgrade" tab in the Admin portal.
2. Click "Proceed". The Review Checklist window appears. Read the instructions carefully.
3. Check the "I have reviewed the checklist" check box, and click "Continue".