STIGQter STIGQter: STIG Summary: Infrastructure Router Security Technical Implementation Guide Juniper Version: 8 Release: 29 Benchmark Date: 25 Jan 2019: The network element must be configured for a maximum number of unsuccessful SSH login attempts set at 3 before resetting the interface.

DISA Rule

SV-28745r2_rule

Vulnerability Number

V-5613

Group Title

SSH login attempts value is greater than 3.

Rule Version

NET1646

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the network device to require a maximum number of unsuccessful SSH logon attempts at 3.

Check Contents

Review the configuration and verify the number of unsuccessful SSH login attempts is set at 3.

system {
login {
retry-options {
tries-before-disconnect 3;
maximum-time 60;
}

Vulnerability Number

V-5613

Documentable

False

Rule Version

NET1646

Severity Override Guidance

Review the configuration and verify the number of unsuccessful SSH login attempts is set at 3.

system {
login {
retry-options {
tries-before-disconnect 3;
maximum-time 60;
}

Check Content Reference

M

Responsibility

Information Assurance Officer

Target Key

510

Comments