The network device must enforce dual authorization based on organizational policies and procedures for organization defined privileged commands.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-NET-000016-NDM-000016 | SRG-NET-000016-NDM-000016 | SRG-NET-000016-NDM-000016_rule | Medium |
| Description |
|---|
| Dual authorization mechanisms require the approval of two authorized individuals in order to execute. An organization may determine certain commands or network device configuration changes require dual authorization before being activated. |
| STIG | Date |
|---|---|
| Network Device Management Security Requirements Guide | 2013-07-30 |
Details
| Check Text ( C-SRG-NET-000016-NDM-000016_chk ) |
|---|
| Verify the network device is configured to implement dual authorization when required by organizational policies. If there is no organizational policy dictating that dual authorization be implemented, this is not a finding. If there is an organizational policy dictating dual authorization and it is not implemented then, is a finding. |
| Fix Text (F-SRG-NET-000016-NDM-000016_fix) |
|---|
| Configure the network device for dual authorization based on organizational policy. |