Ensure ‘aaa authentication secure-http-client’ is configured correctly

Details

Provides a secure method, SSL, to protect username and password to be sent in clear text

Rationale:

If HTTP authentication is used without the command aaa authentication secure-http-client, the username and password are sent from the client to the security appliance in clear text.

Solution

Configure the secure aaa authentication for http

hostname(CONFIG)#AAA AUTHENTICATION SECURE-HTTP-CLIENT

Supportive Information

The following resource is also helpful.

https://workbench.cisecurity.org/files/1903

This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Cisco.

References

800-53|AC-2(9)
CSCv7|4.3

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles