Summary

Customers can now measure compliance against Dell OS10 devices with new plugin ID Dell OS10 Compliance Checks (275781) on Tenable Vulnerability Management and Nessus. This plugin is published as a part of the Policy Compliance template and will use the existing SSH credential type. The plugin will retrieve all target data using "show" commands and will evaluate actual values against a given audit policy.

Three audits implementing the DISA STIG will be released along with the plugin:

• DISA Dell OS10 Switch Layer 2 Switch STIG v1r1
• 20 checks
• DISA Dell OS10 Switch NDM STIG v1r1
• 39 checks
• DISA Dell OS10 Switch Router STIG v1r1
• 42 checks

These audits contain a total of 101 checks. Some examples include:

• OS10-NDM-000010 The Dell OS10 Switch must limit the number of concurrent sessions to an organization-defined number for each administrator account and/or administrator account type. OS10-NDM-000410 The Dell OS10 Switch must enforce password complexity by requiring that at least one uppercase character be used. OS10-L2S-000240 The Dell OS10 Switch must not use the default VLAN for management traffic. OS10-RTR-001040 The Dell OS10 Router must be configured to suppress Router Advertisements on all external IPv6-enabled interfaces.

Additional Notes

For those that are interested in creating custom audit content for their environment, please see the plugin documentation for all supported keywords and uses at https://docs.tenable.com/nessus/compliance-checks-reference/Content/dell-os10.htm.

Target Release Date

Nessus/Tenable.VM - Immediate
Tenable.sc - To be determined