Manualshelf

Users Guide

ManualsBrandsDell ManualsComputer equipmentOpenManage Network Manager
511512513514515516517518519520
Standard Policies | Change Management and Compliance
516 OMNM 6.5.3 User Guide
Compliance Policy Groups
The following combine the Compliance Policies described above into groups to scan for
compliance.
PCI Compliance for Cisco
This includes the following COMPLIANCE policies: Cisco VTY
Transport Input Limit, Cisco VTY Login, Cisco VTY Exec Timeout, Cisco VTY Access Class
Inbound, Cisco SNMP RW Communities, Cisco Password Encryption, Cisco Finger Service
(12.1+), Cisco Finger Service (11.3-12.0), Cisco Disable NTP, Cisco Identd Service, Cisco
AAA Login, Cisco UDP Small-Servers (11.2-)
HIPPA Compliance for Cisco
A policy group. This includes the following COMPLIANCE
policies: Cisco VTY Transport Input Limit, Cisco VTY Login, Cisco SNMP RW
Communities, Cisco Set Login on Console Port, Cisco Password Encryption, Cisco PAD
Service, Cisco HTTP Server, Cisco Enable Secret, Cisco Timestamps Logging, Cisco NTP
Redundant Servers, Cisco Finger Service (11.3-12.0), Cisco Finger Service (12.1+), Cisco
BOOTP Server, Cisco CDP Service.
SOX Compliance for Cisco
A policy group. This includes the following COMPLIANCE
policies: Cisco VTY Login, Cisco VTY Transport Input Limit, Cisco SNMP RW
Communities, Cisco Set Login on Console Port, Cisco Password Encryption, Cisco PAD
Service, Cisco Finger Service (11.3-12.0), Cisco Finger Service (12.1+), Cisco HTTP Server,
Cisco Identd Service, Cisco UDP Small-Servers (11.3+).
NSA Compliance for Cisco
A policy group. This includes the following COMPLIANCE
policies: Cisco VTY Login, Cisco VTY Transport Input Limit, Cisco SNMP RW
Communities, Cisco VTY Exec Timeout, Cisco Service Config, Cisco Password Encryption,
Cisco PAD Service, Cisco HTTP Server, Cisco Finger Service (12.1+), Cisco Finger Service
(11.3-12.0), Cisco Enable Secret, Cisco Disable MOP, Cisco Disable NTP, Cisco NTP
Redundant Servers.
CISP Compliance for Cisco
A policy group. This includes the following COMPLIANCE
policies: Cisco UDP Small-Servers (11.3+), Cisco VTY Transport Input Limit, Cisco VTY
Login, Cisco VTY Exec Timeout, Cisco VTY Access Class Inbound, Cisco Password
Encryption, Cisco Finger Service (12.1+), Cisco Finger Service (11.3-12.0), Cisco Enable
Secret.
Cisco Compliance Actions
Remedial actions are often part of the process of change management. These may be triggered by
the
Cisco Event Processing Rules
, and are included as part of the
Standard Policies
.
Compliance Cisco AAA Login
To avoid being locked out of the router, define username and
password on the access server before starting the AAA configuration.
Compliance Cisco Finger Service
Disables the ip finger service.
Compliance Cisco HTTP Server
—Disables http.
Compliance Cisco Identd Service
Disables identd
Compliance Cisco IP Source Route
Disables ip source route
Compliance Cisco UDP Small-Servers (11.3+)
Disables PCI UDP Small-Servers (11.3+).
Compliance Cisco TCP Small-Servers
Displace PCI Cisco TCP Small-Servers.
Compliance Cisco BOOTP Server
Disables PCI Cisco BOOTP Server.
Compliance Cisco PAD Service
Disables the PAD service.