Management Services Security - Community strings and USM passwords should be difficult to guess and should follow a policy - usm

Information

The Junos SNMPv3 implementation supports various hashing and encryption algorithms - obviously the strongest methods provide maximum security but you have to choose algorithms and encryption that are supported by your management stations.

NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.

Solution

Review the SNMP v3 configuration for the defined user accounts and verify password complexity.

See Also

http://www.juniper.net/us/en/training/jnbooks/day-one/fundamentals-series/hardening-junos-devices-checklist/

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5c.

Plugin: Juniper

Control ID: c5ae00e1afc6a851d9a76a624a7a8b00b5b8db2608222e9ab517b09e1d021a9b