STIGQter: STIG Summary: HP FlexFabric Switch NDM Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 24 Jul 2020:

If the HP FlexFabric Switch uses discretionary access control, the HP FlexFabric Switch must enforce organization-defined discretionary access control policies over defined subjects and objects.

DISA Rule

SV-80721r1_rule

Vulnerability Number

V-66231

Group Title

SRG-APP-000328-NDM-000286

Rule Version

HFFS-ND-000088

Severity

CAT II

CCI(s)

• CCI-002165 - The information system enforces organization-defined discretionary access control policies over defined subjects and objects.

Weight

10

Fix Recommendation

Configure the HP FlexFabric Switch to enforce organization-defined discretionary access control policies over defined subjects and objects. Below is an example of a test user being assigned pre-defined user-role network-operator:

[HP] local-user test
[HP-luser-test] authorization-attribute user-role network-operator

Check Contents

Check the HP FlexFabric Switch to determine if organization-defined discretionary access control policies are enforced over defined subjects and objects.

[HP] display local-user

local-user test
authorization-attribute user-role network-operator

If organization-defined discretionary access control policies are not enforced over defined subjects and objects, this is a finding.

Vulnerability Number

V-66231

Documentable

False

Rule Version

HFFS-ND-000088

Severity Override Guidance

Check the HP FlexFabric Switch to determine if organization-defined discretionary access control policies are enforced over defined subjects and objects.

[HP] display local-user

local-user test
authorization-attribute user-role network-operator

If organization-defined discretionary access control policies are not enforced over defined subjects and objects, this is a finding.

Check Content Reference

M

Target Key

2971

Comments