STIGQter: STIG Summary: Riverbed SteelHead CX v8 NDM Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 25 Oct 2019:

Riverbed Optimization System (RiOS) must disable the local Shark and Monitor accounts so they cannot be used as shared accounts by users.

DISA Rule

SV-77327r1_rule

Vulnerability Number

V-62837

Group Title

SRG-APP-000317-NDM-000282

Rule Version

RICX-DM-000003

Severity

CAT II

CCI(s)

• CCI-002142 - The information system terminates shared/group account credentials when members leave the group.

Weight

10

Fix Recommendation

Configure RiOS to enforce assigned privilege level for each administrator in accordance with site documented requirements.

Navigate to the device Management Console
Navigate to Configure >> Security >> User Permissions

Remove all values of "Roles and Permissions" for the Monitor and Shark accounts

Click "Apply" to save the changes
Navigate to the top of the web page and click "Save" to write changes to memory

Check Contents

Verify that RiOS is configured to the assigned privilege level for each administrator.

Navigate to the device Management Console
Navigate to Configure >> Security >> User Permissions

Verify the privilege level values for Shark and Monitor

If all privileges for the Shark and Monitor accounts are not set to Deny, this is a finding.

Vulnerability Number

V-62837

Documentable

False

Rule Version

RICX-DM-000003

Severity Override Guidance

Verify that RiOS is configured to the assigned privilege level for each administrator.

Navigate to the device Management Console
Navigate to Configure >> Security >> User Permissions

Verify the privilege level values for Shark and Monitor

If all privileges for the Shark and Monitor accounts are not set to Deny, this is a finding.

Check Content Reference

M

Target Key

2931

Comments