Check: SRG-APP-000065-NDM-000214
Network Device Management SRG:
SRG-APP-000065-NDM-000214
(in versions v4 r3 through v2 r15)
Title
The network device must be configured to enforce the limit of three consecutive invalid logon attempts, after which time it must block any login attempt for 15 minutes. (Cat II impact)
Discussion
By limiting the number of failed login attempts, the risk of unauthorized system access via user password guessing, otherwise known as brute-forcing, is reduced.
Check Content
Review the device configuration to verify that it enforces the limit of three consecutive invalid logon attempts. If the device is not configured to enforce the limit of three consecutive invalid logon attempts, this is a finding.
Fix Text
Configure the network device to enforce the limit of three consecutive invalid logon attempts during a 15-minute time period.
Additional Identifiers
Rule ID: SV-202019r879546_rule
Vulnerability ID: V-202019
Group Title: SRG-APP-000065
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000044 |
The information system enforces the organization-defined limit of consecutive invalid logon attempts by a user during the organization-defined time period. |
Controls
Number | Title |
---|---|
AC-7 |
Unsuccessful Logon Attempts |