Skip to content
Log In

III - Administrative Public

Rules and Groups employed by this XCCDF Profile

  • All the network level devices interconnected to the SAN are not located in a secure room with limited access.

    If the network level devices are not located in a secure area they can be tampered with which could lead to a denial of service if the device is powered off or sensitive data can be compromised by ...
    Rule Medium Severity
    Show

  • SAN Fabric Switch User Accounts with Passwords

    Group
    Show

  • Individual user accounts with passwords are not set up and maintained for the SAN fabric switch.

    Without identification and authentication unauthorized users could reconfigure the SAN or disrupt its operation by logging in to the fabric switch and executing unauthorized commands. The IAO/NSO w...
    Rule Medium Severity
    Show

  • Fabric Switches do not have bidirectional authentication

    Group
    Show

  • The SAN must be configured to use bidirectional authentication.

    Switch-to-switch management traffic does not have to be encrypted. Bidirectional authentication ensures that a rogue switch cannot be inserted and be auto configured to join the fabric.
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules