Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-55145 | SRG-APP-000177-NDM-000263 | SV-69391r1_rule | Medium |
Description |
---|
Authorization for access to any network device requires an approved and assigned individual account identifier. To ensure only the assigned individual is using the account, the account must be bound to a user certificate when PKI-based authentication is implemented. |
STIG | Date |
---|---|
Network Device Management Security Requirements Guide | 2015-12-20 |
Check Text ( C-55765r1_chk ) |
---|
Determine if the network device maps the authenticated identity to the user account for PKI-based authentication. This requirement may be verified by configuration review or validated test results. If the network device does not map the authenticated identity to the user account for PKI-based authentication, this is a finding. |
Fix Text (F-60009r1_fix) |
---|
Configure the network device to map the authenticated identity to the user account for PKI-based authentication. |