We are scanning our WAAS evironment for PCI compliance and the device with the latest code fails. Has anyone else had issues with PCI scans of a WAAS device? The main thing that it fails on is the version of Apache, SSH version, and self-signed certificates.
We have disabled ssh version 1 from the CM and can see that no sshd version 1 is in the config, yet we are able to ssh into the box version 1. We are also able to telnet on port 22 to the box and we get the following response:
On the cert issues one of the items is that the WAVE has a self-signed cert, which from what I can tell can't be removed per bug/enhancement
Has anyone else had to do a PCI scan on these devices and what were the results?
Network Insider Series Live WebinarTuesday, December 8, 202010:00 AM Pacific Time(San Francisco, GTM -08:00)At the September Network Insider Series, we introduced new 400G switches and line cards that deliver more bandwidth and more features.Now we a...
Cisco DCN Demo Series: Unveiling Cisco Nexus Dashboard Tuesday, December 1, 202010:00 am Pacific Daylight Time(San Francisco, GMT-07:00)Join us as we take a first look at Cisco Nexus Dashboard in the DCN Software Demo Series! The Cisco Nexus Dashboard p...
The new Cisco Intersight cloud operations platform can help bring order to your hybrid IT world by bridging on-premises and public cloud infrastructure, workloads, and apps.
Get the full story in our next webinar on Nov. 17th. Regist...
Introducing the simplest hybrid cloud platform
Application and infrastructure management can get complicated in a hybrid IT world.Take back control once and for all with the newly expanded Cisco Intersight — the cloud operations platfo...