The network element must use two or more NTP servers to synchronize time.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-23747 | NET0812 | SV-41498r1_rule | Low |
| Description |
|---|
| Without synchronized time, accurately correlating information between devices becomes difficult, if not impossible. If you cannot successfully compare logs between each of your routers, switches, and firewalls, it will be very difficult to determine the exact events that resulted in a network breach incident. NTP provides an efficient and scalable method for network elements to synchronize to an accurate time source. |
| STIG | Date |
|---|---|
| Perimeter Router Security Technical Implementation Guide Juniper | 2018-11-28 |
Details
| Check Text ( C-12792r2_chk ) |
|---|
| Review the router or switch configurations and verify that two or more NTP servers have been defined similar to the following example: [edit system] ntp { boot-server 129.237.32.2; server 129.237.32.2; server 142.181.31.6; } Note: The boot-server statement identifies the server from which the initial time of day and date is obtained when the router boots. The server statements identify the NTP servers used for periodic time synchronization. |
| Fix Text (F-3044r2_fix) |
|---|
| Configure the device to use two separate NTP servers. |