DISA STIG Arista MLS DCS-7000 Series L2S v1r2

Audit Details

Name: DISA STIG Arista MLS DCS-7000 Series L2S v1r2

Updated: 3/7/2023

Authority: DISA STIG

Plugin: Arista

Revision: 1.12

Estimated Item Count: 12

File Details

Filename: DISA_STIG_Arista_L2S_STIG_V1R2.audit

Size: 31.8 kB

MD5: 768d81c2be627e93d57fb6bb111c7a26
SHA256: e7ce4941fba763917d5490932187998954d846316d60b394c134f5e306c3f689

Audit Changelog

 
Revision 1.12

Mar 7, 2023

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.11

Apr 25, 2022

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.10

Jul 30, 2021

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.9

Jun 17, 2021

Miscellaneous
  • Metadata updated.
Revision 1.8

Jan 11, 2021

Miscellaneous
  • Metadata updated.
Added
  • AMLS-L2-000100 - The Arista Multilayer Switch must enforce approved authorizations for controlling the flow of information within the network based on organization-defined information flow control policies.
  • AMLS-L2-000110 - The Arista Multilayer Switch must enforce approved authorizations for controlling the flow of information between interconnected systems based on organization-defined information flow control policies.
  • AMLS-L2-000120 - The Arista Multilayer Switch must uniquely identify all network-connected endpoint devices before establishing any connection - aaa auth dot1x default group
  • AMLS-L2-000120 - The Arista Multilayer Switch must uniquely identify all network-connected endpoint devices before establishing any connection - dot1x system-auth-control
  • AMLS-L2-000130 - The Arista Multilayer Switch must authenticate all endpoint devices before establishing a network connection using bidirectional authentication that is cryptographically based - aaa authentication dot1x default group
  • AMLS-L2-000130 - The Arista Multilayer Switch must authenticate all endpoint devices before establishing a network connection using bidirectional authentication that is cryptographically based - dot1x system-auth-control
  • AMLS-L2-000140 - The Arista Multilayer Switch must re-authenticate all endpoint devices every 60 minutes or less - dot1x reauthentication
  • AMLS-L2-000140 - The Arista Multilayer Switch must re-authenticate all endpoint devices every 60 minutes or less - dot1x timeout reauth-period 3600
  • AMLS-L2-000150 - The Arista Multilayer Switch must re-authenticate 802.1X connected devices every hour - dot1x timeout reauth-period 3600
  • AMLS-L2-000150 - The Arista Multilayer Switch must re-authenticate 802.1X connected devices every hour - logging level DOT1X informational
  • AMLS-L2-000160 - The Arista Multilayer Switch must authenticate 802.1X connected devices before establishing any connection - aaa auth dot1x default group radius
  • AMLS-L2-000160 - The Arista Multilayer Switch must authenticate 802.1X connected devices before establishing any connection - dot1x system-auth-control
Removed
  • AMLS-L2-000100 - Arista MLS must enforce approved authorizations for controlling the flow of information within the network.
  • AMLS-L2-000110 - Arista MLS must enforce approved authorizations for controlling the flow of information between interconnected systems.
  • AMLS-L2-000120 - Arista MLS must identify all connected endpoint devices before establishing a connection - aaa auth dot1x default group
  • AMLS-L2-000120 - Arista MLS must identify all connected endpoint devices before establishing a connection - dot1x system-auth-control
  • AMLS-L2-000130 - Arista MLS must authenticate all devices using bidirectional auth using crypto - aaa authentication dot1x default group
  • AMLS-L2-000130 - Arista MLS must authenticate all devices using bidirectional auth using crypto - dot1x system-auth-control
  • AMLS-L2-000140 - Arista MLS must re-authenticate all endpoint devices every 60 minutes or less - dot1x reauthentication
  • AMLS-L2-000140 - Arista MLS must re-authenticate all endpoint devices every 60 minutes or less - dot1x timeout reauth-period 3600
  • AMLS-L2-000150 - Arista MLS must re-authenticate 802.1X connected devices every hour - dot1x timeout reauth-period 3600
  • AMLS-L2-000150 - Arista MLS must re-authenticate 802.1X connected devices every hour - logging level DOT1X informational
  • AMLS-L2-000160 - Arista MLS must authenticate 802.1X connected devices before establishing any connection - dot1x system-auth-control
  • AMLS-L2-000160 - Arista MLS must authenticate 802.1X devices before establishing any connection - aaa auth dot1x default group radius
Revision 1.7

Sep 29, 2020

Miscellaneous
  • References updated.
Revision 1.6

Apr 20, 2020

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.5

Jan 29, 2019

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.4

Dec 12, 2018

Miscellaneous
  • Metadata updated.
  • References updated.