UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The network device must enforce dual authorization based on organizational policies and procedures for organization defined privileged commands.


Overview

Finding ID Version Rule ID IA Controls Severity
SRG-NET-000016-NDM-000016 SRG-NET-000016-NDM-000016 SRG-NET-000016-NDM-000016_rule Medium
Description
Dual authorization mechanisms require the approval of two authorized individuals in order to execute. An organization may determine certain commands or network device configuration changes require dual authorization before being activated.
STIG Date
Network Device Management Security Requirements Guide 2013-07-30

Details

Check Text ( C-SRG-NET-000016-NDM-000016_chk )
Verify the network device is configured to implement dual authorization when required by organizational policies. If there is no organizational policy dictating that dual authorization be implemented, this is not a finding. If there is an organizational policy dictating dual authorization and it is not implemented then, is a finding.
Fix Text (F-SRG-NET-000016-NDM-000016_fix)
Configure the network device for dual authorization based on organizational policy.