The network element must use multifactor authentication for network access to non-privileged accounts.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000140-RTR-NA	SRG-NET-000140-RTR-NA	SRG-NET-000140-RTR-NA_rule		Low

Description
Multifactor authentication is defined as: using two or more factors to achieve authentication. Factors include: (i) something you know (e.g., password/PIN); (ii) something you have (e.g., cryptographic identification device, token); or (iii) something you are (e.g., biometric). A non-privileged account is defined as: An information system account with authorizations of a regular or non-privileged user. Network access is defined as: Access to an information system by a user (or a process acting on behalf of a user) communicating through a network (e.g., local area network, wide area network, Internet). This requirement is not applicable as by definition all network device accounts are privileged accounts.

Description

Multifactor authentication is defined as: using two or more factors to achieve authentication. Factors include: (i) something you know (e.g., password/PIN); (ii) something you have (e.g., cryptographic identification device, token); or (iii) something you are (e.g., biometric). A non-privileged account is defined as: An information system account with authorizations of a regular or non-privileged user. Network access is defined as: Access to an information system by a user (or a process acting on behalf of a user) communicating through a network (e.g., local area network, wide area network, Internet). This requirement is not applicable as by definition all network device accounts are privileged accounts.

STIG	Date
Router Security Requirements Guide	2013-07-30

Details

Check Text ( C-SRG-NET-000140-RTR-NA_chk )
This requirement is NA for router.

Fix Text (F-SRG-NET-000140-RTR-NA_fix)
This requirement is NA for router.