Time: System has a primary NTP server set

Information

Using NTP ensures network events are synchronized across devices for troubleshooting and malicious activity analyses. You should consider building a NTP environment with dedicated NTP server with a feed sourced from a Stratum-1 capable clock. Under no circumstance should an TiMOS/SR-OS device be used as the primary clock. It is recommended that all network devices be set to the same time to determine event timelines. This will save value time when compared to correlating device logs across your infrastructure.

Solution

Run the following command on the device to set a primary NTP server: configure system time ntp server <address> prefer

See Also

https://infoproducts.alcatel-lucent.com/aces/cgi-bin/dbaccessfilename.cgi/9305050101_V1_SR-OS Security Best Practices v2.0.pdf

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-8

Plugin: Alcatel

Control ID: 1f93ad66363446bf16d13b5a47f4978de451dd18ca72e0773d6716dbbd75e315