Ensure HTTP and Telnet options are disabled for all management profiles – HTTP

Details

HTTP and Telnet options should not be enabled for device management.

Rationale:

Management access over cleartext services such as HTTP or Telnet could result in a compromise of administrator credentials and other sensitive information related to device management.

Solution

Navigate to Network > Network Profiles > Interface Management.
Set the HTTP and Telnet boxes to unchecked.

Supportive Information

The following resource is also helpful.

https://workbench.cisecurity.org/files/2104

This security hardening control applies to the following category of controls within NIST 800-53: Identification and Authentication, System and Information Integrity.This control applies to the following type of system Palo_Alto.

References

800-53|IA-2(1)
800-53|SI-4
CSCv7|9.2
CSCv7|11.5

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles