STIGQter: STIG Summary: SEL-2740S NDM Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 02 May 2019:

The SEL-2740S must alert the ISSO and SA (at a minimum) in the event of an audit processing failure.

DISA Rule

SV-102381r1_rule

Vulnerability Number

V-92293

Group Title

SRG-APP-000108-NDM-000232

Rule Version

SELS-ND-000340

Severity

CAT II

CCI(s)

• CCI-000139 - The information system alerts designated organization-defined personnel or roles in the event of an audit processing failure.

Weight

10

Fix Recommendation

On commissioning the SEL-2740S, enter the IP address, subnet mask, flow controller IP address, default gateway, and host name. Select the severity level desired for the alarm contact in the log services for the configuration node.

Check Contents

Review the configuration node of the SEL-2740S in the flow controller and verify the alarm contact behavior is configured as a log service under All Categories in the configuration object for the desired switch.

If the switch is not configured to alert the ISSO and SA in the event of an audit processing failure, this is a finding.

Vulnerability Number

V-92293

Documentable

False

Rule Version

SELS-ND-000340

Severity Override Guidance

Review the configuration node of the SEL-2740S in the flow controller and verify the alarm contact behavior is configured as a log service under All Categories in the configuration object for the desired switch.

If the switch is not configured to alert the ISSO and SA in the event of an audit processing failure, this is a finding.

Check Content Reference

M

Target Key

3383

Comments