STIGQter STIGQter: STIG Summary: VMware NSX Manager Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 27 Jun 2016: The NSX Manager must not have any default manufacturer passwords when deployed.

DISA Rule

SV-83771r1_rule

Vulnerability Number

V-69167

Group Title

SRG-APP-000080-NDM-000345

Rule Version

VNSX-ND-000022

Severity

CAT I

CCI(s)

Weight

10

Fix Recommendation

Change the NSX Manager default manufacturer password.

Log into NSX Manager with built-in administrator account "admin" and the default manufacturer password "default".

Type "configure terminal", hit enter >> type "cli password" [enter new password], hit enter >> type "exit" >> type "exit".

Check Contents

Verify NSX Manager does not have the default manufacturer password.

Log into NSX Manager with built-in administrator account "admin" with the default manufacturer password "default".

If the NSX Manager accepts the default manufacturer password, this is a finding.

Vulnerability Number

V-69167

Documentable

False

Rule Version

VNSX-ND-000022

Severity Override Guidance

Verify NSX Manager does not have the default manufacturer password.

Log into NSX Manager with built-in administrator account "admin" with the default manufacturer password "default".

If the NSX Manager accepts the default manufacturer password, this is a finding.

Check Content Reference

M

Target Key

2991

Comments