STIGQter: STIG Summary: HP FlexFabric Switch NDM Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 24 Jul 2020:

The HP FlexFabric Switch must disable identifiers (individuals, groups, roles, and devices) after 35 days of inactivity.

DISA Rule

SV-80691r1_rule

Vulnerability Number

V-66201

Group Title

SRG-APP-000163-NDM-000251

Rule Version

HFFS-ND-000052

Severity

CAT II

CCI(s)

• CCI-000795 - The organization manages information system identifiers by disabling the identifier after an organization-defined time period of inactivity.

Weight

10

Fix Recommendation

Configure the HP FlexFabric Switch to automatically disable accounts after 35 days of inactivity:

[HP] password-control enable
[HP] password-control login idle-time 35

Check Contents

Review the HP FlexFabric Switch configuration to determine if it automatically disables accounts after 35 days.

[HP] display password-control

Global password control configurations:

User account idle time: 35 days

If accounts are not automatically disabled after 35 days of inactivity, this is a finding.

Vulnerability Number

V-66201

Documentable

False

Rule Version

HFFS-ND-000052

Severity Override Guidance

Review the HP FlexFabric Switch configuration to determine if it automatically disables accounts after 35 days.

[HP] display password-control

Global password control configurations:

User account idle time: 35 days

If accounts are not automatically disabled after 35 days of inactivity, this is a finding.

Check Content Reference

M

Target Key

2971

Comments