Ensure Idle Timeout for Login Sessions is set to 5 minutes – ssh idle-timeout
Details Verify device is configured to automatically disconnect sessions after a fixed idle time. Rationale: This prevents unauthorized users from...
- Home
- Security Hardening
- CIS Cisco NX OS L1 V1.0.0
CIS Cisco NX OS L1 V1.0.0
Ensure Idle Timeout for Login Sessions is set to 5 minutes – console exec-timeout
Details Verify device is configured to automatically disconnect sessions after a fixed idle time. Rationale: This prevents unauthorized users from...Ensure Syslog Logging is configured – logging level
Details Logging should be configured such that: Logging level is set to a level sufficient for the target device Logs...Ensure Syslog Logging is configured – logging server/source-interface
Details Logging should be configured such that: Logging level is set to a level sufficient for the target device Logs...If a Local Time Zone is used, Configure Daylight Savings
Details If local time zones are configured on network infrastructure, it is important to also configure the time ‘shift’ that...If SNMPv2 is in use, set Restrictions on Access – ACL
Details NX-OS allows administrators to restrict SNMPv2 access to known management stations, usually servers with an NMS (Network Management System)...If SNMPv2 is in use, set Restrictions on Access – snmp-server
Details NX-OS allows administrators to restrict SNMPv2 access to known management stations, usually servers with an NMS (Network Management System)...If SNMPv2 is in use, use a Complex Community String
Details SNMP v2 while similar to v1 aside from adding support for 64 bit counters and the ability to use...If VLAN interfaces have IP addreses, configure anti spoofing / ingress filtering protections
Details If VLAN interfaces have IP addresses, it is important that anti-spoofing protections are in place, to prevent an attacker...Log all Successful and Failed Administrative Logins
Details By default failed logins are logged, but successful logins are not logged. This makes any configuration changes or successful...