Manualshelf

Users Guide

ManualsBrandsDell ManualsComputer equipmentOpenManage Network Manager
31323334353637383940
Standard Change Management Policies
34
COMPLIANCE Cisco PAD ServiceThe packet assembler/disassembler (PAD)
service supports X.25 links. This service is on by default, but it is only needed for
devices using X.25; PCI 2.2.
COMPLIANCE Cisco Service ConfigDisable autoloading of configuration files
from a server; PCI 2.2.2
COMPLIANCE Cisco Password EncryptionThe password-encryption service
shows user passwords as encrypted strings within the configuration; PCI 8.4
COMPLIANCE Cisco IP Source RouteDisable handling of source routed packets.
COMPLIANCE Cisco SNMP RW CommunitiesDo not use SNMP Read-Write
strings, and only use Read-Only strings with associated access lists; PCI 2.2.3.
COMPLIANCE Cisco TCP Small-Servers (11.2-)Disables unneeded TCP services
such as echo, discard, chargen, etc; PCI 2.2.2
COMPLIANCE Cisco TCP Small-Servers (11.3+)Disables unneeded TCP services
such as echo, discard, chargen, etc; PCI 2.2.2
COMPLIANCE Cisco UDP Small-Servers (11.2-) Disables unneeded UDP services
such as echo, discard, chargen, etc.; PCI 2.2.2.
COMPLIANCE Cisco UDP Small-Servers (11.3+)Disables unneeded UDP services
such as echo, discard, chargen, etc; PCI 2.2.2
COMPLIANCE Cisco VTY Exec TimeoutSet Exec Timeout on VTY ports; PCI
8.5.15
COMPLIANCE Cisco VTY Access Class InboundSet inbound access class on VTY
ports; PCI 2.2.3.
COMPLIANCE Cisco VTY LoginEnable Login on VTY ports; PCI 2.2.3
COMPLIANCE Cisco VTY Transport Input LimitLimit Input Transport on VTY
ports; PCI 2.3
COMPLIANCE Cisco Set Login on Console PortEnable login on console port; PCI
2.2.3
COMPLIANCE Cisco AAA LoginAAA login should be enabled; PCI 8.3
COMPLIANCE Cisco BOOTP ServerThe BOOTSP server should be disabled; PCI
2.2.2
COMPLIANCE Cisco CDP ServiceDisable CDP (Cisco Discovery Protocol) globally
COMPLIANCE Cisco Console Exec TimeoutSet an exec timeout console port; PCI
8.5.15
Cisco tacacs+ enabled
Cisco monitor logging Enabled
Cisco console logging Enabled
Cisco buffered logging Enabled
Cisco SNMP Community String NOT public
Cisco SNMP Community String NOT private
Cisco RADIUS Enabled
Cisco Interfaces MUST have Description
Cisco Banner Enabled
Cisco ACL RFC 1918 space