Skip to content
Log In

I - Mission Critical Sensitive

Rules and Groups employed by this XCCDF Profile

  • SAN management is not accomplished using the out-of-band or direct connection method.

    Removing the management traffic from the production network diminishes the security profile of the SAN servers by allowing all the management ports to be closed on the production network. The IAO/N...
    Rule Medium Severity
    Show

  • Management Console to SAN Fabric Authentication

    Group
    Show

  • Communications from the management console to the SAN fabric are not protected strong two-factor authentication.

    Using two-factor authentication between the SAN management console and the fabric enhances the security of the communications carrying privileged functions. It is harder for an unauthorized manage...
    Rule Low Severity
    Show

  • Default PKI keys

    Group
    Show

  • The manufacturer’s default PKI keys have not been changed prior to attaching the switch to the SAN Fabric.

    If the manufacturer's default PKI keys are allowed to remain active on the device, it can be accessed by a malicious individual with access to the default key. The IAO/NSO will ensure that the manu...
    Rule Low Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules