STIGQter: STIG Summary: Forescout Network Access Control Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

Forescout must authenticate all endpoint devices before establishing a connection and proceeding with posture assessment.

DISA Rule

SV-233326r615862_rule

Vulnerability Number

V-233326

Group Title

SRG-NET-000343-NAC-001460

Rule Version

FORE-NC-000180

Severity

CAT II

CCI(s)

• CCI-001958 - The information system authenticates an organization-defined list of specific and/or types of devices before establishing a local, remote, or network connection.

Weight

10

Fix Recommendation

1. Log on to the Forescout UI.
2. Select Tools >> Option >> Appliance >> IP Assignment.
3. Configure IP addresses associated with the SSP and label within the IP Assignments list, and then select "Apply".

Check Contents

1. Log on to the Forescout UI.
2. Select Tools >> Option >> Appliance >> IP Assignment.
3. Verify all IP addresses associated with the SSP are labeled within the IP Assignments list.

If Forescout does not authenticate all endpoints prior to establishing a connection and proceeding with posture assessment, this is a finding.

Vulnerability Number

V-233326

Documentable

False

Rule Version

FORE-NC-000180

Severity Override Guidance

1. Log on to the Forescout UI.
2. Select Tools >> Option >> Appliance >> IP Assignment.
3. Verify all IP addresses associated with the SSP are labeled within the IP Assignments list.

If Forescout does not authenticate all endpoints prior to establishing a connection and proceeding with posture assessment, this is a finding.

Check Content Reference

M

Target Key

5250

Comments