STIGQter: STIG Summary: Router Security Requirements Guide Version: 4 Release: 2 Benchmark Date: 23 Apr 2021:

The router must be configured to disable the auxiliary port unless it is connected to a secured modem providing encryption and authentication.

DISA Rule

SV-207107r604135_rule

Vulnerability Number

V-207107

Group Title

SRG-NET-000019

Rule Version

SRG-NET-000019-RTR-000001

Severity

CAT III

CCI(s)

• CCI-001414 - The information system enforces approved authorizations for controlling the flow of information between interconnected systems based on organization-defined information flow control policies.

Weight

10

Fix Recommendation

Disable the auxiliary port.

If used for out-of-band administrative access, the port must be connected to a secured modem providing encryption and authentication.

Check Contents

Review the configuration and verify that the auxiliary port is disabled unless a secured modem providing encryption and authentication is connected to it.

If the auxiliary port is not disabled or is not connected to a secured modem when it is enabled, this is a finding.

Vulnerability Number

V-207107

Documentable

False

Rule Version

SRG-NET-000019-RTR-000001

Severity Override Guidance

Review the configuration and verify that the auxiliary port is disabled unless a secured modem providing encryption and authentication is connected to it.

If the auxiliary port is not disabled or is not connected to a secured modem when it is enabled, this is a finding.

Check Content Reference

M

Target Key

2917

Comments