Free DISA STIG and SRG Library | Vaulted

V-60143

The BIG-IP appliance must be configured to uniquely identify and authenticate organizational administrators (or processes acting on behalf of organizational administrators).

Finding ID
F5BI-DM-000095
Rule ID
SV-74573r1_rule
Severity
Cat I
CCE
(None)
Group Title
SRG-APP-000148-NDM-000246
CCI
CCI-000764
Target Key
(None)
Documentable
No
Discussion

To assure accountability and prevent unauthenticated access, organizational administrators must be uniquely identified and authenticated for all network management accesses to prevent potential misuse and compromise of the system.

Fix Text

Configure the BIG-IP appliance to use a properly configured authentication server that uniquely identifies and authenticates organizational administrators.

Check Content

Verify the BIG-IP appliance is configured to use a properly configured authentication server that uniquely identifies and authenticates organizational administrators. Navigate to the BIG-IP System manager >> System >> Users >> Authentication. Verify "Authentication: User Directory" is configured for an approved remote authentication server that uniquely identifies and authenticates organizational administrators. If the BIG-IP appliance is not configured to use a properly configured authentication server that uniquely identifies and authenticates organizational administrators, this is a finding.