Skip to content
Log In

I - Mission Critical Public

Rules and Groups employed by this XCCDF Profile

  • SRG-APP-000516-NDM-000317

    Group
    Show

  • The Arista Multilayer Switch must protect the audit records of nonlocal accesses to privileged accounts and the execution of privileged functions.

    Auditing may not be reliable when performed by the network device to which the user being audited has privileged access. The privileged user may inhibit auditing or modify audit records. This contr...
    Rule Medium Severity
    Show

  • SRG-APP-000516-NDM-000336

    Group
    Show

  • The Arista Multilayer Switch must employ AAA service to centrally manage authentication settings.

    The use of authentication servers or other centralized management servers for providing centralized authentication services is required for network device management. Maintaining local administrato...
    Rule High Severity
    Show

  • SRG-APP-000516-NDM-000340

    Group
    Show

  • The Arista Multilayer Switch must support organizational requirements to conduct backups of system-level information contained in the information system when changes occur or weekly, whichever is sooner.

    System-level information includes default and customized settings and security attributes, including ACLs that relate to the network device configuration, as well as software required for the execu...
    Rule Low Severity
    Show

  • SRG-APP-000516-NDM-000317

    Group
    Show

  • The Arista Multilayer Switch must be updated to one of the minimum approved versions of EOS.

    The Arista Multilayer Switch uses the EOS operating system. Updates to EOS contain new security-related features and security patches that address known vulnerabilities. Running a current DoD-appro...
    Rule Low Severity
    Show

  • SRG-APP-000179-NDM-000265

    Group
    Show

  • The Arista Multilayer Switch must use FIPS-compliant mechanisms for authentication to a cryptographic module.

    Unapproved mechanisms that are used for authentication to the cryptographic module are not verified and therefore cannot be relied upon to provide confidentiality or integrity, and DoD data may be ...
    Rule Medium Severity
    Show

  • SRG-APP-000516-NDM-000317

    Group
    Show

  • The Arista Multilayer Switch must have a local infrequently used account to be used as an account of last resort with full access to the network device.

    Use of a complex password helps to increase the time and resources required to compromise the password. Password complexity, or strength, is a measure of the effectiveness of a password in resistin...
    Rule High Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules