UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

If SNMP service is enabled on AIX, the default SNMP password must not be used in the /etc/snmpd.conf config file.


Overview

Finding ID Version Rule ID IA Controls Severity
V-215231 AIX7-00-001135 SV-215231r508663_rule Medium
Description
Use default SNMP password increases the chance of security vulnerability on SNMP service.
STIG Date
IBM AIX 7.x Security Technical Implementation Guide 2023-08-23

Details

Check Text ( C-16429r294144_chk )
Inspect "/etc/snmpd.conf" to find all the passwords that are used in the config file:

# grep -v "^#" /etc/snmpd.conf | grep -E "public|private|password"

If any results are returned, default passwords are being used and this is a finding.
Fix Text (F-16427r294145_fix)
Edit "/etc/snmpd.conf" config file to remove or change all the default passwords that are used in the file.

Restart snmpd:
# stopsrc -s snmpd
# startsrc -s snmpd