III - Administrative Classified
Rules and Groups employed by this XCCDF Profile
-
SAN management is not accomplished using the out-of-band or direct connection method.
<VulnDiscussion>Removing the management traffic from the production network diminishes the security profile of the SAN servers by allowing al...Rule Medium Severity -
Management Console to SAN Fabric Authentication
<GroupDescription></GroupDescription>Group -
Communications from the management console to the SAN fabric are not protected strong two-factor authentication.
<VulnDiscussion>Using two-factor authentication between the SAN management console and the fabric enhances the security of the communications...Rule Low Severity -
Default PKI keys
<GroupDescription></GroupDescription>Group -
The manufacturer’s default PKI keys have not been changed prior to attaching the switch to the SAN Fabric.
<VulnDiscussion>If the manufacturer's default PKI keys are allowed to remain active on the device, it can be accessed by a malicious individu...Rule Low Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules