Check: H36180
HBSS Host Intrusion Prevention:
H36180
(in version v4 r13)
Title
(U//FOUO) The HIPS Admin password for the User Interface (UI) time-based password is disabled. (Cat II impact)
Discussion
Check Content
(U//FOUO) This check needs to be completed for every active policy that controls ePO agents. From the ePO server console, select the asset to be checked, then select ‘Policies,’ followed by ‘Host Intrusion Prevention 7: General’ from the product list. From the ‘Client UI’ category, select the applicable policy. From the ‘Advanced Options’ tab, within the Time-based Passwords section, ensure the ‘Enable time-based passwords’ option is not checked. If it is checked, this is a finding.
Fix Text
(U//FOUO) Discontinue the use of time-based passwords.
Additional Identifiers
Rule ID: SV-15154r1_rule
Vulnerability ID: V-14536
Group Title:
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |