Details

Network devices not protected with strong password schemes provide the opportunity for anyone to crack the password thus gaining access to the device and causing network outage or denial of service. Many default vendor passwords are well-known; hence, not removing them prior to deploying the network devices into production provides an opportunity for a malicious user to gain unauthorized access to the device.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Remove any vendor default passwords from the network devices configuration.

Supportive Information

The following resource is also helpful.

• https://iasecontent.disa.mil/stigs/zip/U_Network_Infrastructure_Router_L3_Switch_V8R29_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: Identification and Authentication.This control applies to the following type of system Juniper.

References

• 800-53|IA-5
• CAT|I
• Rule-ID|SV-3143r4_rule
• STIG-ID|NET0240
• Vuln-ID|V-3143

Source

• Tenable.com/audits