CIS Palo Alto Firewall 8 Benchmark L2 v1.0.0

Audit Details

Name: CIS Palo Alto Firewall 8 Benchmark L2 v1.0.0

Updated: 4/25/2022

Authority: CIS

Plugin: Palo_Alto

Revision: 1.6

Estimated Item Count: 13

File Details

Filename: CIS_Palo_Alto_Firewall_8_Benchmark_L2_v1.0.0.audit

Size: 51.1 kB

MD5: 58121db5d0f772e194892c7396d8a6c8
SHA256: 9cbd538ecbb7955c63e10d14a90aed974dbd59c41dde920f059a05b2405fb336

Audit Items

DescriptionCategories
1.2.5 Ensure valid certificate is set for browser-based administrator interface - Authentication Profile

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

1.2.5 Ensure valid certificate is set for browser-based administrator interface - Certificate Profiles

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

1.2.5 Ensure valid certificate is set for browser-based administrator interface - Certificates

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

1.6.3 Ensure that the certificate securing Remote Access VPNs is valid - Certificates

SYSTEM AND COMMUNICATIONS PROTECTION

1.6.3 Ensure that the certificate securing Remote Access VPNs is valid - GlobalProtect Gateways

SYSTEM AND COMMUNICATIONS PROTECTION

1.6.3 Ensure that the certificate securing Remote Access VPNs is valid - GlobalProtect Portals

SYSTEM AND COMMUNICATIONS PROTECTION

2.1 Ensure that IP addresses are mapped to usernames - User ID Agents

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

2.1 Ensure that IP addresses are mapped to usernames - Zones

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

2.2 Ensure that WMI probing is disabled

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, SYSTEM AND INFORMATION INTEGRITY

6.17 Ensure that a Zone Prot Profile with tuned Flood Protection settings enabled

SYSTEM AND COMMUNICATIONS PROTECTION

7.1 Ensure application security policies exist when allowing traffic from an untrusted zone to a more trusted zone

ACCESS CONTROL

8.3 Ensure that the Certificate used for Decryption is Trusted

SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY

CIS_Palo_Alto_Firewall_8_Benchmark_L2_v1.0.0.audit from CIS Palo Alto Firewall 8 Benchmark v1.0.0