STIGQter: STIG Summary: HP FlexFabric Switch NDM Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 24 Jul 2020:

The HP FlexFabric switch must be configured to send SNMP traps and notifications to the SNMP manager for the purpose of sending alarms and notifying appropriate personnel as required by specific events.

DISA Rule

SV-80791r1_rule

Vulnerability Number

V-66301

Group Title

SRG-APP-000516-NDM-000341

Rule Version

HFFS-ND-000143

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure the HP FlexFabric Switch to send system alert messages and alarms to a SNMP agent:

[HP]snmp-agent
[HP]snmp-agent sys-info version v3
[HP]snmp-agent group v3 group1 privacy
[HP]snmp-agent target-host trap address udp-domain 192.168.16.103 params securityname snmp1 v3 privacy
[HP]snmp-agent usm-user v3 user1 group1 simple authentication-mode xxxxxxxxx privacy-mode aes128 xxxxxxxxx

Check Contents

Determine if the HP FlexFabric Switch is configured to send system alert messages, alarms to a SNMP agent and/or automatically shuts down when a component failure is detected.

[HP] display current-configuration

snmp-agent
snmp-agent local-engineid 800063A280D07E28ECBDB800000001
snmp-agent sys-info version v3
snmp-agent group v3 group1 privacy
snmp-agent target-host trap address udp-domain 192.168.16.103 params securityname snmp1 v3 privacy
snmp-agent usm-user v3 user1 group1 cipher authentication-mode sha $c$3$3C41avdWWmRMT64buQYb6FLdhVIUpAVHhIGyxIMhX6o3Qe3+GjY= privacy-mode aes128 $c$3$YpvVDasCitD9iCUvGc01ycckCq0rY+c6sThoqny+TjMTlQ==

If the HP FlexFabric Switch is not configured to send system alert messages and alarms to a SNMP agent and/or does not automatically shuts down when a component failure is detected, this is a finding.

Vulnerability Number

V-66301

Documentable

False

Rule Version

HFFS-ND-000143

Severity Override Guidance

Determine if the HP FlexFabric Switch is configured to send system alert messages, alarms to a SNMP agent and/or automatically shuts down when a component failure is detected.

[HP] display current-configuration

snmp-agent
snmp-agent local-engineid 800063A280D07E28ECBDB800000001
snmp-agent sys-info version v3
snmp-agent group v3 group1 privacy
snmp-agent target-host trap address udp-domain 192.168.16.103 params securityname snmp1 v3 privacy
snmp-agent usm-user v3 user1 group1 cipher authentication-mode sha $c$3$3C41avdWWmRMT64buQYb6FLdhVIUpAVHhIGyxIMhX6o3Qe3+GjY= privacy-mode aes128 $c$3$YpvVDasCitD9iCUvGc01ycckCq0rY+c6sThoqny+TjMTlQ==

If the HP FlexFabric Switch is not configured to send system alert messages and alarms to a SNMP agent and/or does not automatically shuts down when a component failure is detected, this is a finding.

Check Content Reference

M

Target Key

2971

Comments