STIGQter: STIG Summary: Symantec ProxySG NDM Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Jan 2020:

Symantec ProxySG must be configured to enforce a minimum 15-character password length for local accounts.

DISA Rule

SV-104531r1_rule

Vulnerability Number

V-94701

Group Title

SRG-APP-000164-NDM-000252

Rule Version

SYMP-NM-000250

Severity

CAT II

CCI(s)

• CCI-000205 - The information system enforces minimum password length.

Weight

10

Fix Recommendation

In order to set the minimum password length 15 characters.

1. Log on to the Symantec ProxySG SSH CLI.
2. Type "enable", enter the enable password.
3. Type "configure" and press "Enter".
4. Type "security password-min-len 15" and press "Enter".

Check Contents

Verify the minimum password length is set to at least 15 characters.

At the CLI, type:

Show Security

Look for value of the "Minimum Password Length:".

If Symantec ProxySG is not configured to enforce a minimum 15-character password length for local accounts, this is a finding.

Vulnerability Number

V-94701

Documentable

False

Rule Version

SYMP-NM-000250

Severity Override Guidance

Verify the minimum password length is set to at least 15 characters.

At the CLI, type:

Show Security

Look for value of the "Minimum Password Length:".

If Symantec ProxySG is not configured to enforce a minimum 15-character password length for local accounts, this is a finding.

Check Content Reference

M

Target Key

3517

Comments