Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The SLES for vRealize must not use UDP for NIS/NIS+.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-88519 | VROM-SL-000525 | SV-99169r1_rule | Medium |
| Description |
|---|
| Implementing NIS or NIS+ under UDP may make SLES for vRealize more susceptible to a denial of service attack and does not provide the same quality of service as TCP. |
| STIG | Date |
|---|---|
| VMware vRealize Operations Manager 6.x SLES Security Technical Implementation Guide | 2018-10-11 |
Details
| Check Text ( C-88211r1_chk ) |
|---|
| If SLES for vRealize does not use NIS or NIS+, this is not applicable. Check if NIS or NIS+ is implemented using UDP: # rpcinfo -p | grep yp | grep udp If NIS or NIS+ is implemented using UDP, this is a finding. |
| Fix Text (F-95261r1_fix) |
|---|
| Configure SLES for vRealize to not use UDP for NIS and NIS+. Consult vendor documentation for the required procedure. |