II - Mission Support Public
Rules and Groups employed by this XCCDF Profile
-
SAN Switch encryption and DOD PKI
<GroupDescription></GroupDescription>Group -
The fabric switches must use DoD-approved PKI rather than proprietary or self-signed device certificates.
<VulnDiscussion>DOD PKI supplies better protection from malicious attacks than userid/password authentication and should be used anytime it i...Rule Low Severity -
SAN Network Management Ports Fabric Switch
<GroupDescription></GroupDescription>Group -
Network management ports on the SAN fabric switches except those needed to support the operational commitments of the sites are not disabled.
<VulnDiscussion>Enabled network management ports that are not required expose the SAN fabric switch and the entire network to unnecessary vul...Rule Medium Severity -
SAN management out-of-band or direct connect
<GroupDescription></GroupDescription>Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules