Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
If SNMP service is enabled on AIX, the default SNMP password must not be used in the /etc/snmpd.conf config file.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-215231 | AIX7-00-001135 | SV-215231r508663_rule | Medium |
| Description |
|---|
| Use default SNMP password increases the chance of security vulnerability on SNMP service. |
| STIG | Date |
|---|---|
| IBM AIX 7.x Security Technical Implementation Guide | 2023-02-13 |
Details
| Check Text ( C-16429r294144_chk ) |
|---|
| Inspect "/etc/snmpd.conf" to find all the passwords that are used in the config file: # grep -v "^#" /etc/snmpd.conf | grep -E "public|private|password" If any results are returned, default passwords are being used and this is a finding. |
| Fix Text (F-16427r294145_fix) |
|---|
| Edit "/etc/snmpd.conf" config file to remove or change all the default passwords that are used in the file. Restart snmpd: # stopsrc -s snmpd # startsrc -s snmpd |