UCF STIG Viewer Logo

The DSN component is not configured to be unavailable for 60 seconds after 3 consecutive failed logon attempts.


Overview

Finding ID Version Rule ID IA Controls Severity
V-7998 DSN18.13 SV-8484r1_rule ECSC-1 Medium
Description
Requirement: The IAO will ensure that management ports that receive three consecutive failed logon attempts will be unavailable for at least 60 seconds. After three failed logon attempts the system should be configured to force the user to wait for 60 seconds. This measure will prevent unauthorized access through the means of hacking a password. If the time that the port is unavailable is substantially greater than 60 seconds, denial of service could result by maliciously attempting logins on all ports.
STIG Date
Defense Switched Network (DSN) STIG 2017-01-19

Details

Check Text ( C-7372r1_chk )
Have the IAO or SA demonstrate compliance with the requirement; minimally on a sampling of the related or effected devices. Inspect configuration files as applicable.
Fix Text (F-7573r1_fix)
Ensure the system is configured to make the port unavailable for 60 seconds after 3 failed logon attempts.