STIGQter STIGQter: STIG Summary: Windows Server 2008 R2 Member Server Security Technical Implementation Guide Version: 1 Release: 30 Benchmark Date: 26 Jul 2019: The Automated Information System (AIS) will be physically secured in an access controlled area.

DISA Rule

SV-32240r1_rule

Vulnerability Number

V-1070

Group Title

Physical security

Rule Version

1.001

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Relocate equipment to a controlled access area.

Check Contents

Interview the SA to determine if equipment is located in an access controlled area.

Servers will be located in rooms, or locked cabinets, that are accessible only to authorized systems personnel. Authorized user access should be verified at two points (i.e. building access and server room).

Vulnerability Number

V-1070

Documentable

False

Rule Version

1.001

Severity Override Guidance

Interview the SA to determine if equipment is located in an access controlled area.

Servers will be located in rooms, or locked cabinets, that are accessible only to authorized systems personnel. Authorized user access should be verified at two points (i.e. building access and server room).

Check Content Reference

M

Responsibility

Information Assurance Officer

Target Key

1823

Comments