1.2.4 Ensure HTTP and Telnet options are disabled for all management profiles

Information

HTTP and Telnet options should not be enabled for device management.

Rationale:

Management access over cleartext services such as HTTP or Telnet could result in a compromise of administrator credentials and other sensitive information related to device management.

Solution

Navigate to Network > Network Profiles > Interface Management.
For each Profile, set the HTTP and Telnet boxes to unchecked.

See Also

https://workbench.cisecurity.org/benchmarks/13792

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6, 800-53|CM-7, CSCv7|9.2, CSCv7|14.4, CSCv7|16.5

Plugin: Palo_Alto

Control ID: 6bf1dd06e6b93afd3f9896e78c340e446d220348b60b5d513f35f7aaae82d10a