Management Access Policy - HTTP - Admin State

Information

The state of the HTTP communication service. This can be enabled or disabled. The state can be:
127.0.0.- Enabled
- Disabled

The default is Enabled.

Solution

Log into the Cisco APIC Web Console:
Navigate to 'Fabric' -> 'Fabric Policies'.

Click 'Fabric Security'.

Expand 'Policies'

Expand 'Pod'

Expand 'Management Access'

For each 'Management Access' policy, in the 'HTTP' section, ensure 'Admin State' is set to 'Disabled'.

Item Details

Audit Name: Tenable Cisco ACI

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7b.

Plugin: Cisco_ACI

Control ID: ef0df63d3beb3681f6eafc2a0027cd87345516f2d0ed4e408f56f250156b966d