800-53|IA-5e.

Title

AUTHENTICATOR MANAGEMENT

Description

Changing default content of authenticators prior to information system installation;

Reference Item Details

Category: IDENTIFICATION AND AUTHENTICATION

Family: IDENTIFICATION AND AUTHENTICATION

Baseline Impact: LOW,MODERATE,HIGH

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.5.2 Unset 'private' for 'snmp-server community'CiscoCIS Cisco IOS 12 L1 v4.0.0
1.5.3 Unset 'public' for 'snmp-server community'CiscoCIS Cisco IOS 12 L1 v4.0.0
1.11.5 Ensure 'SNMP community string' is not the default stringCiscoCIS Cisco Firewall v8.x L1 v4.2.0
1.19 - Remove, rename, or comment out the default user accounts from production servers - 'JBossWS password != empty'UnixRedhat JBoss EAP 5.x
1.19 - Remove, rename, or comment out the default user accounts from production servers - 'JBossWS principal != sa'UnixRedhat JBoss EAP 5.x
1.19 - Remove, rename, or comment out the default user accounts from production servers - 'JBossWS userName != sa'UnixRedhat JBoss EAP 5.x
1.19 - Remove, rename, or comment out the default user accounts from production servers - 'jbossws-users.properties - kermit'UnixRedhat JBoss EAP 5.x
1.19 - Remove, rename, or comment out the default user accounts from production servers - 'jmx-console password != empty'UnixRedhat JBoss EAP 5.x
1.19 - Remove, rename, or comment out the default user accounts from production servers - 'jmx-console principal != sa'UnixRedhat JBoss EAP 5.x
1.19 - Remove, rename, or comment out the default user accounts from production servers - 'jmx-console userName != sa'UnixRedhat JBoss EAP 5.x
1.19 - Remove, rename, or comment out the default user accounts from production servers - 'jmx-console-users.properties - admin'UnixRedhat JBoss EAP 5.x
1.19 - Remove, rename, or comment out the default user accounts from production servers - 'messaging-users.properties - guest'UnixRedhat JBoss EAP 5.x
1.20 - Remove default roles from production servers - 'admin-console default role != JBossAdmin|HttpInvoker|friend|guest'UnixRedhat JBoss EAP 5.x
1.20 - Remove default roles from production servers - 'console-mgr default role != JBossAdmin|HttpInvoker|friend|guest'UnixRedhat JBoss EAP 5.x
1.20 - Remove default roles from production servers - 'jmx-console default role != JBossAdmin|HttpInvoker|friend|guest'UnixRedhat JBoss EAP 5.x
Adtran : SNMP 'PRIVATE' community string not usedAdtranTNS Adtran AOS Best Practice Audit
Adtran : SNMP 'PUBLIC' community string not usedAdtranTNS Adtran AOS Best Practice Audit
Citrix ADC - System Parameters - Force Password Change (nsroot)Citrix_Application_DeliveryTenable Best Practice Citrix ADC v1.0.0
Ensure 'SNMP community string' is not the default stringCiscoTenable Cisco Firepower Best Practices Audit
GEN002640 - Default system accounts must be disabled or removed - 'bin'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN002640 - Default system accounts must be disabled or removed - 'bin'UnixDISA STIG for Oracle Linux 5 v2r1
GEN002640 - Default system accounts must be disabled or removed - 'daemon'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN002640 - Default system accounts must be disabled or removed - 'daemon'UnixDISA STIG for Oracle Linux 5 v2r1
GEN002640 - Default system accounts must be disabled or removed - 'nuucp'UnixDISA STIG for Oracle Linux 5 v2r1
GEN002640 - Default system accounts must be disabled or removed - 'nuucp'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN002640 - Default system accounts must be disabled or removed - 'smtp'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN002640 - Default system accounts must be disabled or removed - 'smtp'UnixDISA STIG for Oracle Linux 5 v2r1
GEN002640 - Default system accounts must be disabled or removed - 'sys'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN002640 - Default system accounts must be disabled or removed - 'sys'UnixDISA STIG for Oracle Linux 5 v2r1
GEN002640 - Default system accounts must be disabled or removed - 'uucp'UnixDISA STIG for Oracle Linux 5 v2r1
GEN002640 - Default system accounts must be disabled or removed - 'uucp'UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN002640 - Default system accounts must be disabled or removed.UnixDISA STIG AIX 5.3 v1r2
GEN002640 - Default system accounts must be disabled or removed.UnixDISA STIG AIX 6.1 v1r14
GEN005300 - SNMP communities, users, and passphrases must be changed from the default.UnixDISA STIG for Red Hat Enterprise Linux 5 v1r18 Audit
GEN005300 - SNMP communities, users, and passphrases must be changed from the default.UnixDISA STIG for Oracle Linux 5 v2r1
GEN005300 - SNMP communities, users, and passphrases must be changed from the default.UnixDISA STIG AIX 5.3 v1r2
GEN005300 - SNMP communities, users, and passphrases must be changed from the default.UnixDISA STIG AIX 6.1 v1r14
NET1665 - Using default SNMP community names - 'Community set to Public or Private'CiscoDISA STIG Cisco L2 Switch V8R27
PCI 2.2.2 Enable only necessary and secure services, protocols, daemons - 'read-community'UnixPCI DSS 2.0/3.0 - Solaris 10
SNMP Destination - Community NameCisco_ACITenable Cisco ACI
SNMPv1 and v2c vs SNMPv3 - snmp communityArubaOSArubaOS Switch 16.x Hardening Guide v1.0.0
SNMPv1 and v2c vs SNMPv3 - snmp-server communityArubaOSArubaOS CX 10.x Hardening Guide v1.0.0