The network element must support the organizational requirement to ensure individuals are authenticated with an individual authenticator prior to using a group authenticator.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| SRG-NET-000143-RTR-NA | SRG-NET-000143-RTR-NA | SRG-NET-000143-RTR-NA_rule | Medium |
| Description |
|---|
| To assure individual accountability and prevent unauthorized access, organizational users shall be individually identified and authenticated. Organizational users include organizational employees or individuals the organization deems to have equivalent status of employees (e.g., contractors, guest researchers, individuals from allied nations). Users (and any processes acting on behalf of users) need to be uniquely identified and authenticated for all accesses other than those accesses explicitly identified and documented by the organization which outlines specific user actions that can be performed on the information system without identification or authentication. This requirement is applicable to network device management and is not applicable to the routing function. |
| STIG | Date |
|---|---|
| Router Security Requirements Guide | 2013-07-30 |
Details
| Check Text ( C-SRG-NET-000143-RTR-NA_chk ) |
|---|
| This requirement is NA for router. |
| Fix Text (F-SRG-NET-000143-RTR-NA_fix) |
|---|
| This requirement is NA for router. |