SYMP-NM-000050 - Symantec ProxySG must be configured to enforce the limit of three consecutive invalid logon attempts by a user during a 15-minute time period - max-failed-attempts

Information

By limiting the number of failed logon attempts, the risk of unauthorized system access via user password guessing, otherwise known as brute-forcing, is reduced.

Solution

The lockout policy may be configured for both SSH and Web Management Console sessions.

1. SSH into the ProxySG console, type 'enable', press 'Enter'.
2. Enter the appropriate password, type 'config', press 'Enter'.
3. Type 'security local-user-list edit local_user_database', press 'Enter'.
4. Type 'lockout-duration 900', type 'max-failed-attempts 3', press 'Enter'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_SYM_ProxySG_Y20M04_STIG.zip

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-7a., CAT|II, CCI|CCI-000044, Rule-ID|SV-104491r1_rule, STIG-ID|SYMP-NM-000050, Vuln-ID|V-94661

Plugin: BlueCoat

Control ID: 36fc23aa3b38823d3203c6b3d114a3afbb04a4a9cb6e6ee823974b4e902860ac