Ensure HTTP and Telnet options are disabled for the Management Interface

Details

HTTP and Telnet options should not be enabled for device management.

Rationale:

Management access over cleartext services such as HTTP or Telnet could result in a compromise of administrator credentials and other sensitive information related to device management.

Solution

Navigate to Device > Setup > Management > Management Interface Settings.
Set the HTTP and Telnet boxes to unchecked.
Default Value:
Not set.

Supportive Information

The following resource is also helpful.

https://workbench.cisecurity.org/files/1780

This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Palo_Alto.

References

800-53|CM-7b.
CSCv6|3.4
CSCv6|14.2
CSCv6|16.13

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles