NetApp Data ONTAP Example Audit Items

Using supplied credentials, Nessus can test the configuration for systems running NetApp Data ONTAP systems and confirm that it is in accordance with security policy standards.

NetApp Data ONTAP Example

<custom_item>

type: CONFIG_CHECK

description: "1.2 Secure Storage Design, Enable Kerberos with NFS –

'nfs.kerberos.enable = on'"

info: "NetApp recommends the use of security features in IP storageprotocols to secure client access"

solution: "Enable Kerberos with NFS"

reference: "PCI|2.2.3"

see_also: "http://media.netapp.com/documents/tr-3649.pdf"

regex: "nfs.kerberos.enable[\\s\\t]+"

expect: "nfs.kerberos.enable[\\s\\t]+on"

</custom_item>