Ensure 'OSPF authentication' is enabled

Information

Enables the authentication of OSPF neighbor before routing information is received from the neighbor

Rationale:

Enabling the routing protocol authentication prevents against attackers who can send wrong routing information in order to redirect traffic to their network or send malformed packets in order to saturate and to exhaust the control plane.

NOTE: This check is N/A as OSPF routing is not enabled.

Solution

Firepower Management Center:

Step 1
Choose Devices > Device Management, and edit the FTD device.

Step 2
Select Routing > OSPF.

See Also

https://www.cisco.com/c/en/us/td/docs/security/firepower/640/hardening/ftd/FTD_Hardening_Guide_v64.html

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-3(1)

Plugin: Cisco_Firepower

Control ID: 053161be070db2996c1c3d98178fa20c8e3e88a4635cbcfb360901386eac0633