Details
By default FilerView is enabled on port 80, and this will pass all authentications in clear text. NetApp recommends that the ssl protocol be utilized for Web communication to the storage system for administrative functions.
Solution
Configure the HTTP idle connection timeout to 300 seconds or less
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system NetApp.