STIGhubSTIGhub
STIGsSearchCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 5 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Juniper EX Series Switches Router Security Technical Implementation Guide

V-254000

CAT II (Medium)

The Juniper router must not be configured to have any feature enabled that calls home to the vendor.

Rule ID

SV-254000r844033_rule

STIG

Juniper EX Series Switches Router Security Technical Implementation Guide

Version

V2R1

CCIs

CCI-002403

Discussion

Call home services will routinely send data such as configuration and diagnostic information to the vendor for routine or emergency analysis and troubleshooting. There is a risk that transmission of sensitive data sent to unauthorized persons could result in data loss or downtime due to an attack.

Check Content

Verify the call home service is disabled on the device.

Verify [edit system] does NOT contain a phone-home hierarchy as shown:

[edit system]
host-name <hostname>;
:
<other system configuration>
:
phone-home {
    server https://<applicable URL>;
    rfc-compliant;
}

If a call home service is enabled, this is a finding.

Fix Text

Configure the network device to disable the call home service or feature.

Delete the phone-home hierarchy under [edit system].

delete system phone-home
Note: Because the command is hidden, Junos will not autocomplete and "phone-home" must be explicitly, and correctly, spelled out.