STIGQter: STIG Summary: Virtual Private Network (VPN) Security Requirements Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The VPN Gateway and Client must be configured to protect the confidentiality and integrity of transmitted information.

DISA Rule

SV-207245r608988_rule

Vulnerability Number

V-207245

Group Title

SRG-NET-000371

Rule Version

SRG-NET-000371-VPN-001650

Severity

CAT I

CCI(s)

• CCI-002418 - The information system protects the confidentiality and/or integrity of transmitted information.

Weight

10

Fix Recommendation

Configure the VPN Gateway and the remote access client to protect the confidentiality and integrity of transmitted information.

Check Contents

Verify the VPN Gateway and the remote access client are configured to protect the confidentiality and integrity of transmitted information.

If VPN Gateway and Client does not protect the confidentiality and integrity of transmitted information, this is a finding.

Vulnerability Number

V-207245

Documentable

False

Rule Version

SRG-NET-000371-VPN-001650

Severity Override Guidance

Verify the VPN Gateway and the remote access client are configured to protect the confidentiality and integrity of transmitted information.

If VPN Gateway and Client does not protect the confidentiality and integrity of transmitted information, this is a finding.

Check Content Reference

M

Target Key

2920

Comments