DISA STIG Arista MLS DCS-7000 Series NDM V1R2

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA STIG Arista MLS DCS-7000 Series NDM V1R2

Updated: 12/17/2019

Authority: DISA STIG

Plugin: Arista

Revision: 1.7

Estimated Item Count: 60

File Details

Filename: DISA_STIG_Arista_NDM_STIG_V1R2.audit

Size: 121 kB

MD5: 9b0b34d626053f708a0f3ed80213abaf

SHA256: 6dce2516fef483a66c946b7664d2cda00d65052cbff98bcf43051d0f9578f349

Audit Items

Description	Categories
AMLS-NM-000100 - Arista MLS must have a local account to be used as an account of last resort with full access to the device.	ACCESS CONTROL
AMLS-NM-000110 - Arista MLS account of last resort must have a password with a length of 15 characters.	IDENTIFICATION AND AUTHENTICATION
AMLS-NM-000120 - Arista MLS must automatically audit account creation - logging trap
AMLS-NM-000120 - Arista MLS must automatically audit account creation.
AMLS-NM-000130 - Arista MLS must automatically audit account modification.
AMLS-NM-000140 - Arista MLS must automatically audit account disabling actions.
AMLS-NM-000150 - Arista MLS must automatically audit account removal actions.
AMLS-NM-000160 - Arista MLS must display the Standard Mandatory DoD Notice and Consent Banner before granting access to the device.	ACCESS CONTROL
AMLS-NM-000170 - Arista MLS must protect against an individual or process falsely denying having performed actions by non-repudiation.
AMLS-NM-000170 - Arista MLS must protect against an individual or process falsely denying having performed actions non-repudiation.
AMLS-NM-000180 - Arista MLS must generate audit records when successful/unsuccessful attempts to access privileges occur.
AMLS-NM-000190 - Arista MLS must produce audit log records containing sufficient information to establish what type of event occurred.
AMLS-NM-000200 - Arista MLS must generate audit records containing the full-text recording of privileged commands.
AMLS-NM-000210 - Arista MLS must be configured to prohibit the use of all unnecessary/nonsecure functions, ports, protocols, and services.	SYSTEM AND COMMUNICATIONS PROTECTION
AMLS-NM-000220 - Arista MLS must use multifactor authentication for local access to privileged accounts.	IDENTIFICATION AND AUTHENTICATION
AMLS-NM-000240 - Arista MLS must terminate all network connections associated with a device management session at the end of the session.	ACCESS CONTROL
AMLS-NM-000250 - Arista MLS must reveal error messages only to authorized individuals (ISSO, ISSM, and SA).	SYSTEM AND INFORMATION INTEGRITY
AMLS-NM-000260 - Arista MLS must activate a system alert message, send an alarm, and/or auto shut down when a component failure is detected.	SYSTEM AND INFORMATION INTEGRITY
AMLS-NM-000270 - Arista MLS must synchronize internal system clocks to the authoritative time source.	AUDIT AND ACCOUNTABILITY
AMLS-NM-000280 - Arista MLS must be configured to synch internal system clocks with the primary and secondary time sources - NTP Server 1	AUDIT AND ACCOUNTABILITY
AMLS-NM-000280 - Arista MLS must be configured to synch internal system clocks with the primary and secondary time sources - NTP Server 2	AUDIT AND ACCOUNTABILITY
AMLS-NM-000290 - Arista MLS must record time stamps for audit records that can be mapped to UTC or GMT.	CONFIGURATION MANAGEMENT
AMLS-NM-000340 - Arista MLS sessions must implement crypto mechanisms to protect the integrity of communications - api http	CONFIGURATION MANAGEMENT
AMLS-NM-000340 - Arista MLS sessions must implement crypto mechanisms to protect the integrity of communications - api https	SYSTEM AND COMMUNICATIONS PROTECTION
AMLS-NM-000340 - Arista MLS sessions must implement crypto mechanisms to protect the integrity of communications - telnet	CONFIGURATION MANAGEMENT
AMLS-NM-000350 - Arista MLS sessions must implement crypto mechanisms to protect the confidentiality of communications - api http	CONFIGURATION MANAGEMENT
AMLS-NM-000350 - Arista MLS sessions must implement crypto mechanisms to protect the confidentiality of communications - api https	SYSTEM AND COMMUNICATIONS PROTECTION
AMLS-NM-000350 - Arista MLS sessions must implement crypto mechanisms to protect the confidentiality of communications - telnet	CONFIGURATION MANAGEMENT
AMLS-NM-000360 - Arista MLS must generate audit records for privileged activities or other system-level access - aaa commands	AUDIT AND ACCOUNTABILITY
AMLS-NM-000360 - Arista MLS must generate audit records for privileged activities or other system-level access - aaa exec	AUDIT AND ACCOUNTABILITY
AMLS-NM-000360 - Arista MLS must generate audit records for privileged activities or other system-level access - aaa system	AUDIT AND ACCOUNTABILITY
AMLS-NM-000370 - Arista MLS must generate audit records showing starting and ending time for admin access to the system - all logging	AUDIT AND ACCOUNTABILITY
AMLS-NM-000370 - Arista MLS must generate audit records showing starting and ending time for admin access to the system - trap logging	AUDIT AND ACCOUNTABILITY
AMLS-NM-000380 - Arista MLS must generate audit records when concurrent logons from different workstations occur - show logging	AUDIT AND ACCOUNTABILITY
AMLS-NM-000380 - Arista MLS must generate audit records when concurrent logons from different workstations occur - trap logging	AUDIT AND ACCOUNTABILITY
AMLS-NM-000390 - Arista MLS must generate audit records for all account creations, mods, disabling, and termination events - show logging	AUDIT AND ACCOUNTABILITY
AMLS-NM-000390 - Arista MLS must generate audit records for all account creations, mods, disabling, and termination events - trap logging	AUDIT AND ACCOUNTABILITY
AMLS-NM-000400 - Arista MLS must, at a minimum, off-load audit records for interconnected systems in real time - logging host	AUDIT AND ACCOUNTABILITY
AMLS-NM-000400 - Arista MLS must, at a minimum, off-load audit records for interconnected systems in real time - trap logging	AUDIT AND ACCOUNTABILITY
AMLS-NM-000420 - Arista MLS must protect the audit records of nonlocal accesses to accounts and execution of functions - trap logging	AUDIT AND ACCOUNTABILITY
AMLS-NM-000420 - Arista must protect the audit records to priv'd accounts and the execution of priv'd functions - logging host	AUDIT AND ACCOUNTABILITY
AMLS-NM-000420 - Arista must protect the audit records to priv'd accounts and the execution of priv'd functions - show user-account	AUDIT AND ACCOUNTABILITY
AMLS-NM-000430 - Arista MLS must employ AAA service to centrally manage authentication settings - aaa commands all default	IDENTIFICATION AND AUTHENTICATION
AMLS-NM-000430 - Arista MLS must employ AAA service to centrally manage authentication settings - aaa commands all start-stop	AUDIT AND ACCOUNTABILITY
AMLS-NM-000430 - Arista MLS must employ AAA service to centrally manage authentication settings - aaa console	IDENTIFICATION AND AUTHENTICATION
AMLS-NM-000430 - Arista MLS must employ AAA service to centrally manage authentication settings - aaa dot1x default group	IDENTIFICATION AND AUTHENTICATION
AMLS-NM-000430 - Arista MLS must employ AAA service to centrally manage authentication settings - aaa exec default	IDENTIFICATION AND AUTHENTICATION
AMLS-NM-000430 - Arista MLS must employ AAA service to centrally manage authentication settings - aaa exec default start-stop	AUDIT AND ACCOUNTABILITY
AMLS-NM-000430 - Arista MLS must employ AAA service to centrally manage authentication settings - aaa group server	IDENTIFICATION AND AUTHENTICATION
AMLS-NM-000430 - Arista MLS must employ AAA service to centrally manage authentication settings - aaa login console group	IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

DISA STIG Arista MLS DCS-7000 Series NDM V1R2

Warning! Audit Deprecated

Audit Details

File Details

Audit Items