An error occurred:

Check: GEN005306

VMware ESX 3 Server: GEN005306 (in version v1 r2)

Title

The SNMP service must require the use of a FIPS 140-2 approved cryptographic hash algorithm as part of its authentication and integrity methods. (Cat II impact)

Discussion

The SNMP service must use SHA-1 or a FIPS 140-2 approved successor for authentication and integrity.

Check Content

Determine if the SNMP service uses a FIPS 140-2 approved cryptographic hash algorithm as part of its authentication and integrity methods. If it does not, this is a finding.

Fix Text

Configure the SNMP service to use a FIPS 140-2 approved cryptographic hash algorithm as part of its authentication and integrity methods.

Additional Identifiers

Rule ID: SV-26117r1_rule

Vulnerability ID: V-22448

Group Title: GEN005306

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-001453

The information system implements cryptographic mechanisms to protect the integrity of remote access sessions.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
AC-17 (2)

Protection Of Confidentiality / Integrity Using Encryption