Detections
Analytics

DISA STIG Arista MLS DCS-7000 Series L2S v1r3

Audit Details

Name: DISA STIG Arista MLS DCS-7000 Series L2S v1r3

Updated: 8/19/2024

Authority: DISA STIG

Plugin: Arista

Revision: 1.0

Estimated Item Count: 13

File Details

Filename: DISA_STIG_Arista_L2S_STIG_v1r3.audit

Size: 33.5 kB

MD5: a7f398883490aed585dda44f69cfc014
SHA256: d4309255ee27d3e4907371244062fbc47f878e8abe7e486748146631ac4176d1

Audit Items

DescriptionCategories
AMLS-L2-000100 - The Arista Multilayer Switch must enforce approved authorizations for controlling the flow of information within the network based on organization-defined information flow control policies.

ACCESS CONTROL

AMLS-L2-000110 - The Arista Multilayer Switch must enforce approved authorizations for controlling the flow of information between interconnected systems based on organization-defined information flow control policies.

ACCESS CONTROL

AMLS-L2-000120 - The Arista Multilayer Switch must uniquely identify all network-connected endpoint devices before establishing any connection - aaa auth dot1x default group

IDENTIFICATION AND AUTHENTICATION

AMLS-L2-000120 - The Arista Multilayer Switch must uniquely identify all network-connected endpoint devices before establishing any connection - dot1x system-auth-control

IDENTIFICATION AND AUTHENTICATION

AMLS-L2-000130 - The Arista Multilayer Switch must authenticate all endpoint devices before establishing a network connection using bidirectional authentication that is cryptographically based - aaa authentication dot1x default group

IDENTIFICATION AND AUTHENTICATION

AMLS-L2-000130 - The Arista Multilayer Switch must authenticate all endpoint devices before establishing a network connection using bidirectional authentication that is cryptographically based - dot1x system-auth-control

IDENTIFICATION AND AUTHENTICATION

AMLS-L2-000140 - The Arista Multilayer Switch must re-authenticate all endpoint devices every 60 minutes or less - dot1x reauthentication

IDENTIFICATION AND AUTHENTICATION

AMLS-L2-000140 - The Arista Multilayer Switch must re-authenticate all endpoint devices every 60 minutes or less - dot1x timeout reauth-period 3600

IDENTIFICATION AND AUTHENTICATION

AMLS-L2-000150 - The Arista Multilayer Switch must re-authenticate 802.1X connected devices every hour - dot1x timeout reauth-period 3600

IDENTIFICATION AND AUTHENTICATION

AMLS-L2-000150 - The Arista Multilayer Switch must re-authenticate 802.1X connected devices every hour - logging level DOT1X informational

IDENTIFICATION AND AUTHENTICATION

AMLS-L2-000160 - The Arista Multilayer Switch must authenticate 802.1X connected devices before establishing any connection - aaa auth dot1x default group radius

IDENTIFICATION AND AUTHENTICATION

AMLS-L2-000160 - The Arista Multilayer Switch must authenticate 802.1X connected devices before establishing any connection - dot1x system-auth-control

IDENTIFICATION AND AUTHENTICATION

AMLS-L2-000170 - The Arista MLS L2S must be using a version supported by the vendor.

CONFIGURATION MANAGEMENT