STIGQter: STIG Summary: Intrusion Detection and Prevention Systems (IDPS) Security Requirements Guide Version: 2 Release: 6 Benchmark Date: 24 Jul 2020:

The IDPS must be configured to remove or disable non-essential features, functions, and services of the IDPS application.

DISA Rule

SV-45500r2_rule

Vulnerability Number

V-34625

Group Title

SRG-NET-000131-IDPS-00097

Rule Version

SRG-NET-000131-IDPS-00097

Severity

CAT II

CCI(s)

• CCI-000381 - The organization configures the information system to provide only essential capabilities.

Weight

10

Fix Recommendation

Configure the IDPS to remove or disable non-essential features, functions, and services of the IDPS application.

Check Contents

Verify the IDPS is configured to remove or disable non-essential features, functions, and services of the IDPS application.

If the IDPS is not configured to remove or disable non-essential features, functions, and services of the IDPS application, this is a finding.

Vulnerability Number

V-34625

Documentable

False

Rule Version

SRG-NET-000131-IDPS-00097

Severity Override Guidance

Verify the IDPS is configured to remove or disable non-essential features, functions, and services of the IDPS application.

If the IDPS is not configured to remove or disable non-essential features, functions, and services of the IDPS application, this is a finding.

Check Content Reference

M

Target Key

2358

Comments