Free DISA STIG and SRG Library | Vaulted

V-14846

WLAN SSIDs must be changed from the manufacturer’s default to a pseudo random word that does not identify the unit, base, organization, etc.

Finding ID
WIR0105
Rule ID
SV-15614r1_rule
Severity
Cat III
CCE
(None)
Group Title
Change WLAN SSID default
CCI
(None)
Target Key
(None)
Documentable
No
Discussion

An SSID identifying the unit, site or purpose of the WLAN or is set to the manufacturer default may cause an OPSEC vulnerability.

Fix Text

Change the SSID to a pseudo random word that does not identify the unit, base, or organization.

Check Content

Review device configuration. 1. Obtain the SSID using a wireless scanner or the AP or WLAN controller management software. 2. Verify the name is not meaningful (e.g., site name, product name, room number, etc.) or set to the manufacturer's default value. Mark as a finding if the SSID does not meet the requirement listed above.

Responsibility

System Administrator