Cisco Firepower Threat Defense Security Hardening Tool

Restrict Local Admin Account Access MANUAL Disable Default "admin" Account HIGH Use External Authentication (RADIUS/TACACS+) MANUAL Enable SSHv2 Only AUTOMATED Set Appropriate Roles for Admin Users MANUAL Use Dedicated Accounts for API Access MANUAL Restrict Access to FMC CLI MANUAL Create Realm for User-to-Group Mapping MANUAL Create Identity Policy MANUAL Create Identity Rules MANUAL

Create Periodic FMC Backups AUTOMATED Schedule Automatic Rule Updates AUTOMATED Schedule Geolocation Updates AUTOMATED Update URL Filtering Database AUTOMATED Regularly Update FMC Server Version MANUAL Regularly Update Firepower Sensors AUTOMATED

Create Health Policy for FMC Server AUTOMATED Assign Health Policy to Managed Appliances AUTOMATED Configure Central Logging for FMC AUTOMATED Configure Central Logging for Managed Devices AUTOMATED Monitor for Clock Drift AUTOMATED Set Multiple Reliable NTP Sources AUTOMATED Synchronize Device Time to FMC AUTOMATED Send Audit Logging to Syslog AUTOMATED Use Only SNMPv3 for FMC Management MANUAL Use Only SNMPv3 for Managed Devices MANUAL

Set Database Retention Policies MANUAL Run Scheduled Nmap Scans MANUAL

Enable Access Policy Default Logging MANUAL Create Outbound SSL Inspection Policy MANUAL Configure Intrusion Prevention Policy AUTOMATED Enable TLS Server Identity Discovery AUTOMATED Configure File Policy for Malware Detection MANUAL Enable Traffic Decryption AUTOMATED Configure URL Filtering Policy MANUAL Enable Secure VPN AnyConnect Protocols MANUAL Enable Secure Site-to-Site VPN Protocols MANUAL Configure Application Settings in Access Policy MANUAL

Secure Network Time Protocol Server MANUAL Secure Domain Name System (DNS) MANUAL Disable Fragment Reassembly AUTOMATED Block Older SSL and TLS Versions AUTOMATED Configure Default Action to Block AUTOMATED