Detections
Analytics

Item Search

NameAudit NamePluginCategory
2.0 Install & Config - 'Disable RIPv1'TNS NetApp Data ONTAP 7GNetApp
2.0 Install & Config - 'Disable SNMPv3'TNS NetApp Data ONTAP 7GNetApp

CONFIGURATION MANAGEMENT

2.0 Install & Config - 'Disable SSHv1'TNS NetApp Data ONTAP 7GNetApp

CONFIGURATION MANAGEMENT

2.0 Install & Config - 'Disable SSLv2'TNS NetApp Data ONTAP 7GNetApp

SYSTEM AND COMMUNICATIONS PROTECTION

2.0 Install & Config - 'Disable Telnet'TNS NetApp Data ONTAP 7GNetApp

CONFIGURATION MANAGEMENT

2.0 Install & Config - 'Enable SSHv2'TNS NetApp Data ONTAP 7GNetApp

ACCESS CONTROL

2.0 Install & Config - 'Enable SSLv3'TNS NetApp Data ONTAP 7GNetApp

SYSTEM AND COMMUNICATIONS PROTECTION

2.1 Enable Secure Admin Access - 'autologout.telnet.timeout <= 5'TNS NetApp Data ONTAP 7GNetApp

ACCESS CONTROL

2.1 Enable Secure Admin Access - 'ssh.passwd_auth.enable = on'TNS NetApp Data ONTAP 7GNetApp

IDENTIFICATION AND AUTHENTICATION

2.1 Enable Secure Admin Access - 'ssh.pubkey_auth.enable = on'TNS NetApp Data ONTAP 7GNetApp

CONFIGURATION MANAGEMENT

2.1 Enable Secure Admin Access - 'telnet.distinct.enable = on'TNS NetApp Data ONTAP 7GNetApp

ACCESS CONTROL

2.4 Password Security - 'security.passwd.lockout.numtries = 6'TNS NetApp Data ONTAP 7GNetApp

ACCESS CONTROL

2.4 Password Security - 'security.passwd.rules.minimum >= 8'TNS NetApp Data ONTAP 7GNetApp

IDENTIFICATION AND AUTHENTICATION

2.4 Password Security - 'security.passwd.rules.minimum.alphabetic = 2'TNS NetApp Data ONTAP 7GNetApp

IDENTIFICATION AND AUTHENTICATION

2.4 Password Security - 'security.passwd.rules.minimum.digit = 1'TNS NetApp Data ONTAP 7GNetApp

IDENTIFICATION AND AUTHENTICATION

2.4 Password Security - 'security.passwd.rules.minimum.symbol = 1'TNS NetApp Data ONTAP 7GNetApp

IDENTIFICATION AND AUTHENTICATION

2.5 Autologout - 'autologout.console.enable = on'TNS NetApp Data ONTAP 7GNetApp

ACCESS CONTROL

2.5 Autologout - 'autologout.console.timeout <= 5'TNS NetApp Data ONTAP 7GNetApp

ACCESS CONTROL

2.5 Autologout - 'ssh.idle.timeout <= 300'TNS NetApp Data ONTAP 7GNetApp

ACCESS CONTROL

2.7 Network & IP Options - 'ip.match_any_ifaddr = off'TNS NetApp Data ONTAP 7GNetApp

CONFIGURATION MANAGEMENT

2.7 Network & IP Options - 'ip.ping_throttle.drop_level <= 100'TNS NetApp Data ONTAP 7GNetApp

CONFIGURATION MANAGEMENT

2.8 Protocol Access Controls - 'interface.blocked.cifs is not blank'TNS NetApp Data ONTAP 7GNetApp

SYSTEM AND COMMUNICATIONS PROTECTION

2.8 Protocol Access Controls - 'interface.blocked.ftpd has been configured'TNS NetApp Data ONTAP 7GNetApp

SYSTEM AND COMMUNICATIONS PROTECTION

2.8 Protocol Access Controls - 'interface.blocked.iscsi has been configured'TNS NetApp Data ONTAP 7GNetApp

SYSTEM AND COMMUNICATIONS PROTECTION

2.8 Protocol Access Controls - 'interface.blocked.ndmp has been configured'TNS NetApp Data ONTAP 7GNetApp

SYSTEM AND COMMUNICATIONS PROTECTION

2.8 Protocol Access Controls - 'telnet.access has been configured'TNS NetApp Data ONTAP 7GNetApp

ACCESS CONTROL

3.1 Storage System (Hardware) Management - 'Change the root account password after each use'TNS NetApp Data ONTAP 7GNetApp
3.1 Storage System (Hardware) Management - 'FW version >= 4.0'TNS NetApp Data ONTAP 7GNetApp
3.2 Data ONTAP (Software) Mgmt - 'httpd.admin.access has been configured'TNS NetApp Data ONTAP 7GNetApp

ACCESS CONTROL

3.2 Data ONTAP (Software) Mgmt - 'httpd.admin.hostsequiv.enable = off'TNS NetApp Data ONTAP 7GNetApp

SYSTEM AND COMMUNICATIONS PROTECTION

3.2 Data ONTAP (Software) Mgmt - 'Place e0M on a management VLAN'TNS NetApp Data ONTAP 7GNetApp
3.2 Data ONTAP (Software) Mgmt - 'ssh2.banner.enable = on'TNS NetApp Data ONTAP 7GNetApp

ACCESS CONTROL

3.2 Data ONTAP (Software) Mgmt - 'Use e0M as the Data ONTAP management port'TNS NetApp Data ONTAP 7GNetApp
3.3 Role-Based Access Control (RBAC) - 'RBAC has been implemented'TNS NetApp Data ONTAP 7GNetApp
5.2 SnapMirror - 'replication.throttle.incoming.max_kbs has been configured'TNS NetApp Data ONTAP 7GNetApp

SYSTEM AND COMMUNICATIONS PROTECTION

5.2 SnapMirror - 'snapmirror.access has been configured'TNS NetApp Data ONTAP 7GNetApp

ACCESS CONTROL

5.2 SnapMirror - 'snapmirror.log.enable = on'TNS NetApp Data ONTAP 7GNetApp

AUDIT AND ACCOUNTABILITY

5.3 SnapVault - 'snapvault.snapshot_for_dr_backup has been configured'TNS NetApp Data ONTAP 7GNetApp

CONTINGENCY PLANNING

5.4 CIFS - 'CIFS protocol is disabled'TNS NetApp Data ONTAP 7GNetApp

CONFIGURATION MANAGEMENT

5.4 CIFS - 'cifs.audit.autosave.file.extension has been configured'TNS NetApp Data ONTAP 7GNetApp

AUDIT AND ACCOUNTABILITY

5.4 CIFS - 'cifs.audit.autosave.file.limit has been configured'TNS NetApp Data ONTAP 7GNetApp

AUDIT AND ACCOUNTABILITY

5.4 CIFS - 'cifs.audit.enable = on'TNS NetApp Data ONTAP 7GNetApp

AUDIT AND ACCOUNTABILITY

5.4 CIFS - 'cifs.gpo.enable = on'TNS NetApp Data ONTAP 7GNetApp

ACCESS CONTROL

5.4 CIFS - 'dns.domainname has been configured'TNS NetApp Data ONTAP 7GNetApp

SYSTEM AND COMMUNICATIONS PROTECTION

5.5 NFS - 'cifs.preserve_unix_security = on'TNS NetApp Data ONTAP 7GNetApp

CONFIGURATION MANAGEMENT

5.5 NFS - 'nfs.kerberos.principal has been configured'TNS NetApp Data ONTAP 7GNetApp

SYSTEM AND COMMUNICATIONS PROTECTION

5.5 NFS - 'wafl.nt_admin_priv_map_to_root = on'TNS NetApp Data ONTAP 7GNetApp

ACCESS CONTROL

OL07-00-040200 - The Oracle Linux operating system must implement cryptography to protect the integrity of Lightweight Directory Access Protocol (LDAP) communications.DISA Oracle Linux 7 STIG v3r2Unix

ACCESS CONTROL

PANW-IP-000041 - The Palo Alto Networks security platform must protect against or limit the effects of known and unknown types of denial-of-service (DoS) attacks by employing rate-based attack prevention behavior analysis (traffic thresholds)DISA STIG Palo Alto IDPS v3r1Palo_Alto

SYSTEM AND COMMUNICATIONS PROTECTION

SLES-15-010570 - The SUSE operating system must notify the System Administrator (SA) when Advanced Intrusion Detection Environment (AIDE) discovers anomalies in the operation of any security functions.DISA SUSE Linux Enterprise Server 15 STIG v2r4Unix

SYSTEM AND INFORMATION INTEGRITY