The Cisco ACI must not be configured to have any feature enabled that calls home to the vendor.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-272076 | SRG-NET-000131-RTR-000083 | CACI-RT-000016 | SV-272076r1113982_rule | 2025-06-18 | 1 |
| Description |
|---|
| Call home services will routinely send data such as configuration and diagnostic information to the vendor for routine or emergency analysis and troubleshooting. There is a risk that transmission of sensitive data sent to unauthorized persons could result in data loss or downtime due to an attack. |
| ℹ️ Check |
|---|
| Verify the Call Home feature is disabled: 1. Navigate to the "Admin" section in the GUI, then expand All >> Communication Management >> Call Home. 2. In the General tab, verify the Admin State is set to "Off". If the Call Home feature is configured to send messages to unauthorized individuals such as Cisco TAC, this is a finding. |
| ✔️ Fix |
|---|
| Disable the Call Home feature: 1. Navigate to the "Admin" section in the GUI, then expand All >> Communication Management >> Call Home. 2. In the General tab, set the Admin State to "Off". 3. Click "Save". |