Skip to content

I - Mission Critical Classified

Rules and Groups employed by this XCCDF Profile

  • SRG-NET-000019

    <GroupDescription></GroupDescription>
    Group
  • The Arista Multilayer Switch must enforce approved authorizations for controlling the flow of information between interconnected systems based on organization-defined information flow control policies.

    &lt;VulnDiscussion&gt;Information flow control regulates where information is allowed to travel within a network and between interconnected network...
    Rule Medium Severity
  • SRG-NET-000148

    <GroupDescription></GroupDescription>
    Group
  • The Arista Multilayer Switch must uniquely identify all network-connected endpoint devices before establishing any connection.

    &lt;VulnDiscussion&gt;Without identifying devices, unidentified or unknown devices may be introduced, thereby facilitating malicious activity. For...
    Rule Medium Severity
  • SRG-NET-000151

    <GroupDescription></GroupDescription>
    Group
  • The Arista Multilayer Switch must authenticate all endpoint devices before establishing a network connection using bidirectional authentication that is cryptographically based.

    &lt;VulnDiscussion&gt;Without authenticating devices, unidentified or unknown devices may be introduced, thereby facilitating malicious activity on...
    Rule Medium Severity
  • SRG-NET-000151

    <GroupDescription></GroupDescription>
    Group
  • The Arista Multilayer Switch must re-authenticate all endpoint devices every 60 minutes or less.

    &lt;VulnDiscussion&gt;Without authenticating devices, unidentified or unknown devices may be introduced, thereby facilitating malicious activity on...
    Rule Medium Severity
  • SRG-NET-000338

    <GroupDescription></GroupDescription>
    Group
  • The Arista Multilayer Switch must re-authenticate 802.1X connected devices every hour.

    &lt;VulnDiscussion&gt;Without re-authentication, users may access resources or perform tasks for which they do not have authorization. In additio...
    Rule Medium Severity
  • SRG-NET-000343

    <GroupDescription></GroupDescription>
    Group
  • The Arista Multilayer Switch must authenticate 802.1X connected devices before establishing any connection.

    &lt;VulnDiscussion&gt;Without authenticating devices, unidentified or unknown devices may be introduced, thereby facilitating malicious activity. ...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules