STIGQter: STIG Summary: Voice Video Session Management Security Requirements Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:

The Voice Video Session Manager must restrict Voice Video endpoint user access outside of operational hours.

DISA Rule

SV-206838r508661_rule

Vulnerability Number

V-206838

Group Title

SRG-NET-000315

Rule Version

SRG-NET-000315-VVSM-00003

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.
• CCI-002145 - The information system enforces organization-defined circumstances and/or usage conditions for organization-defined information system accounts.

Weight

10

Fix Recommendation

Configure the Voice Video Session Manager to restrict Voice Video endpoint user access outside of operational hours to only essential connections.

Check Contents

Verify the Voice Video Session Manager provides the capability to restrict Voice Video endpoint user access outside of operational hours to allow only essential connection capability. Areas requiring extended service times may be identified as exceptions.

If the Voice Video Session Manager does not restrict Voice Video endpoint user access outside of operational hours allowing for exceptions, this is a finding.

Vulnerability Number

V-206838

Documentable

False

Rule Version

SRG-NET-000315-VVSM-00003

Severity Override Guidance

Verify the Voice Video Session Manager provides the capability to restrict Voice Video endpoint user access outside of operational hours to allow only essential connection capability. Areas requiring extended service times may be identified as exceptions.

If the Voice Video Session Manager does not restrict Voice Video endpoint user access outside of operational hours allowing for exceptions, this is a finding.

Check Content Reference

M

Target Key

2916

Comments