1.2.3 Ensure HTTP and Telnet options are disabled for the Management Interface

Information

HTTP and Telnet options should not be enabled for device management.
Rationale:
Management access over cleartext services such as HTTP or Telnet could result in a compromise of administrator credentials and other sensitive information related to device management.

Solution

Navigate to Device > Setup > Management > Management Interface Settings.
Set the HTTP and Telnet boxes to unchecked.
Default Value:
Not set.

See Also

https://workbench.cisecurity.org/files/1780

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-7b., CSCv6|3.4, CSCv6|14.2, CSCv6|16.13

Plugin: Palo_Alto

Control ID: 0b5e6f6abc80e613607ab091851d65ae2ab1299f90a7bcf444fcb47db2888662