Detections
Analytics
CIS HPE Aruba Networking CX Switch v1.0.1 L1
Audit Details
Name: CIS HPE Aruba Networking CX Switch v1.0.1 L1
Updated: 4/15/2026
Authority: CIS
Plugin: ArubaOS
Revision: 1.0
Estimated Item Count: 28
File Details
Filename: CIS_HPE_Aruba_Networking_CX_Switch_v1.0.1_L1.audit
Size: 94.1 kB
Audit Items
| Description | Categories |
|---|---|
| 1.1.1 Create security user group | ACCESS CONTROL |
| 1.1.2 Securing Password Entry | IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.1.3 Hardening Password Rules | IDENTIFICATION AND AUTHENTICATION |
| 1.1.4 Set an Export Password | IDENTIFICATION AND AUTHENTICATION |
| 1.1.6 Default admin account password | IDENTIFICATION AND AUTHENTICATION |
| 1.1.7 RBAC - Customer defined local user groups | ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.1.8 Session Management | ACCESS CONTROL |
| 1.1.9 Verifying Telnet Server is Disabled | SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.2.2 SSH Allow List | ACCESS CONTROL, SECURITY ASSESSMENT AND AUTHORIZATION, MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.2.4 Recommended Ciphers, MACs, and Algorithms | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.2.6 SSH Server Key | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.3.1 NTP Authentication | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.3.2 Configuring Time Services | AUDIT AND ACCOUNTABILITY |
| 1.4.1.1 Non Default Community Names, Access Rights & ACL | ACCESS CONTROL, SECURITY ASSESSMENT AND AUTHORIZATION, MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.5.3.1 Local Authorization | ACCESS CONTROL |
| 1.5.4.1 Local Accounting | AUDIT AND ACCOUNTABILITY |
| 1.7.1 Firmware Validation | CONFIGURATION MANAGEMENT, RISK ASSESSMENT, SYSTEM AND INFORMATION INTEGRITY |
| 1.8.1.1 SFTP and SCP | ACCESS CONTROL, SECURITY ASSESSMENT AND AUTHORIZATION, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.9.1 https-server default enablement | SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 1.9.2 https-server idle session management | ACCESS CONTROL |
| 1.10.1 ServiceOS Password | IDENTIFICATION AND AUTHENTICATION |
| 1.12 Login Banner | ACCESS CONTROL |
| 1.13 Schedule Configuration Backup Job | CONTINGENCY PLANNING |
| 1.14 Create Hostname | IDENTIFICATION AND AUTHENTICATION |
| 2.1.2 Front Panel Security | PHYSICAL AND ENVIRONMENTAL PROTECTION |
| 2.1.3 Disable Unused Physical Interfaces | SECURITY ASSESSMENT AND AUTHORIZATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 4.2.1 Spaning Tree BPDU Protect | ACCESS CONTROL, RISK ASSESSMENT, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| 4.2.2 Spanning Tree Root Protect | ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION |