STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated just now
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to ForeScout CounterACT NDM Security Technical Implementation Guide

V-255658

CAT III (Low)

The network device must be configured to use a centralized authentication server to authenticate privileged users for remote and nonlocal access for device management.

Rule ID

SV-255658r961863_rule

STIG

ForeScout CounterACT NDM Security Technical Implementation Guide

Version

V1R2

CCIs

CCI-000366CCI-000372

Discussion

The use of authentication servers or other centralized management servers for providing centralized authentication services is required for network device management. Maintaining local administrator accounts for daily usage on each network device without centralized management is not scalable or feasible. Without centralized management, it is likely that credentials for some network devices will be forgotten, leading to delays in administration, which itself leads to delays in remediating production problems and in addressing compromises in a timely fashion.

Check Content

Review the CounterACT configuration to determine if an authentication server is required to access the device.

1. Log on to the CounterACT Administrator UI.
2. From the menu, select Tools >> Options >> User Directory.
3. Verify the selected authentication server is enabled for GUI authentication.

If an authentication server is not configured for use by CounterACT, this is a finding.

Fix Text

Configure CounterACT to use an authentication server to access the device.

1. Log on to the CounterACT Administrator UI.
2. From the menu, select Tools >> Options >> User Directory.
3. Enable the selected authentication server.