CIS Cisco IOS XR 7.x v1.0.1 L2

Name: CIS Cisco IOS XR 7.x v1.0.1 L2

Updated: 8/5/2025

Authority: CIS

Plugin: Cisco

Revision: 1.0

Estimated Item Count: 22

Filename: CIS_Cisco_IOS_XR_7.x_v1.0.1_L2.audit

Size: 77.7 kB

MD5: 18c37a5bb0cc780c167f346cf3b1e3a0

SHA256: 7875d885a5507faedbc1773e6dd97f53d7e93e36b4af38931c637ca6fbf04065

Description	Categories
1.1.1.1 TACACS+	ACCESS CONTROL
1.1.1.2 RADIUS	ACCESS CONTROL
1.1.3.1 Configure Authorization	ACCESS CONTROL
1.1.5 Local users, groups and tasks	ACCESS CONTROL
1.5.7 Set 'priv' for each 'snmp-server group' using SNMPv3	IDENTIFICATION AND AUTHENTICATION
1.5.8 Require 'aes 128' as minimum for 'snmp-server user' when using SNMPv3	IDENTIFICATION AND AUTHENTICATION
1.8.1 Enable AES Password Encryption	IDENTIFICATION AND AUTHENTICATION
1.8.3 Configure a Password Policy	IDENTIFICATION AND AUTHENTICATION
1.9 Management plane protection	ACCESS CONTROL
2.1.1.1 Authentication	ACCESS CONTROL, CONFIGURATION MANAGEMENT
2.1.2.1 Authentication	IDENTIFICATION AND AUTHENTICATION
2.1.3.1 Authentication	IDENTIFICATION AND AUTHENTICATION
2.1.4.1 Authentication	IDENTIFICATION AND AUTHENTICATION
2.1.5.1 Authentication	IDENTIFICATION AND AUTHENTICATION
2.1.6 Key chains	ACCESS CONTROL
2.2.1.1 Set 'ntp authenticate'	AUDIT AND ACCOUNTABILITY
2.2.1.2 Set 'ntp authentication-key'	AUDIT AND ACCOUNTABILITY
2.2.1.3 Set the 'ntp trusted-key'	AUDIT AND ACCOUNTABILITY
2.2.1.4 Set 'key' for each 'ntp server'	AUDIT AND ACCOUNTABILITY
2.3.1 Authentication	SYSTEM AND COMMUNICATIONS PROTECTION
2.4.1 Authentication	SYSTEM AND COMMUNICATIONS PROTECTION
3.1 URPF	SYSTEM AND INFORMATION INTEGRITY