NET0470 - Unauthorized accounts are configured to access device

Information

Unauthorized accounts must not be configured for access to the network device.

A malicious user attempting to gain access to the network device may compromise an account that may be unauthorized for use. The unauthorized account may be a temporary or inactive account that is no longer needed to access the device. Denial of Service, interception of sensitive information, or other destructive actions could potentially take place if an unauthorized account is configured to access the network device.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Remove any account configured for access to the network device that is not defined in the organization's responsibilities list.

See Also

https://iasecontent.disa.mil/stigs/zip/U_Network_Perimeter_Router_L3_Switch_V8R32_STIG.zip

Item Details

References: CAT|II, Rule-ID|SV-3058r5_rule, STIG-ID|NET0470, Vuln-ID|V-3058

Plugin: Cisco

Control ID: 2ac2032e3b4c52018a92cc42a653153a4703bb362a68c25669cf78dafea20bb1