Check: SAN04.013.00
Storage Area Network STIG:
SAN04.013.00
(in versions v2 r4 through v2 r2)
Title
SAN management is not accomplished using the out-of-band or direct connection method. (Cat II impact)
Discussion
Removing the management traffic from the production network diminishes the security profile of the SAN servers by allowing all the management ports to be closed on the production network. The IAO/NSO will ensure that SAN management is accomplished using the out-of-band or direct connection method.
Check Content
The reviewer will interview the IAO and view the SAN network drawings provided.
Fix Text
Develop a plan to migrate the SAN management to an out-of-band network or a direct connect method. Obtain CM approval for the plan and implement the plan.
Additional Identifiers
Rule ID: SV-6773r1_rule
Vulnerability ID: V-6636
Group Title: SAN management out-of-band or direct connect
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |