STIGQter: STIG Summary: Voice Video Session Management Security Requirements Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:

The Voice Video Session Manager must produce session (call) records containing the identity of the users and identifiers associated with the session.

DISA Rule

SV-206821r508661_rule

Vulnerability Number

V-206821

Group Title

SRG-NET-000079

Rule Version

SRG-NET-000079-VVSM-00035

Severity

CAT II

CCI(s)

CCI-001487 - The information system generates audit records containing information that establishes the identity of any individuals or subjects associated with the event.

Weight

Fix Recommendation

Configure the Voice Video Session Manager to produce session records containing the identity of the users and identifiers associated with the session.

Check Contents

Verify the Voice Video Session Manager produces session records containing the identity of the users and identifiers associated with the session. The identity of the users and identifiers of the call in this context would be the user ID or user name.

For Voice Video Session Managers that have the concept of a device rather than users and identifiers, this requirement is not applicable.

If the Voice Video Session Manager does not produce session records containing the identity of the users and identifiers associated with the session, this is a finding.

The Voice Video Session Manager must produce session (call) records containing the identity of the users and identifiers associated with the session.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments