1.2.4 Ensure HTTP and Telnet options are disabled for all management profiles - HTTP
HTTP and Telnet options should not be enabled for device management. Rationale: Management access over cleartext services such as HTTP or Telnet could result in a compromise of administrator credentials and other sensitive information related to device management.
Navigate to Network > Network Profiles > Interface Management. Set the HTTP and Telnet boxes to unchecked.