Detections
Analytics

Revision 1.1

Aug 11, 2022
Functional Update
  • 1.1.1.2 SNMPv3 traps should be configured - configuration
  • 1.1.1.2 SNMPv3 traps should be configured - hip match
  • 1.1.1.2 SNMPv3 traps should be configured - host
  • 1.1.1.2 SNMPv3 traps should be configured - ip-tag
  • 1.1.1.2 SNMPv3 traps should be configured - user-id
  • 1.6.3 Ensure that the Certificate Securing Remote Access VPNs is Valid - Certificates
  • 1.6.3 Ensure that the Certificate Securing Remote Access VPNs is Valid - GlobalProtect Gateways
  • 1.6.3 Ensure that the Certificate Securing Remote Access VPNs is Valid - GlobalProtect Portals
  • 2.1 Ensure that IP addresses are mapped to usernames - User ID Agents
  • 2.1 Ensure that IP addresses are mapped to usernames - Zones
  • 2.2 Ensure that WMI probing is disabled
  • 6.17 Ensure that a Zone Protection Profile with tuned Flood Protection settings enabled for all flood types is attached to all untrusted zones
  • 7.1 Ensure application security policies exist when allowing traffic from an untrusted zone to a more trusted zone
  • 8.3 Ensure that the Certificate used for Decryption is Trusted
Miscellaneous
  • Platform check updated.
  • References updated.
Added
  • 1.2.5 Ensure valid certificate is set for browser-based administrator interface
Removed
  • 1.2.5 Ensure valid certificate is set for browser-based administrator interface - Authentication Profile
  • 1.2.5 Ensure valid certificate is set for browser-based administrator interface - Certificate Profiles
  • 1.2.5 Ensure valid certificate is set for browser-based administrator interface - Certificates