STIGQter STIGQter: STIG Summary: Network Device Management Security Requirements Guide Version: 3 Release: 2 Benchmark Date: 24 Jan 2020: The network device must shut down by default upon audit failure (unless availability is an overriding concern).

DISA Rule

SV-69403r2_rule

Vulnerability Number

V-55157

Group Title

SRG-APP-000109-NDM-000233

Rule Version

SRG-APP-000109-NDM-000233

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure the network device to shut down by default upon audit failure or, when availability is an overriding concern, perform responses described in the vulnerability discussion.

Check Contents

Determine if the network device shuts down by default upon audit failure. When availability is an overriding concern, responses described in the vulnerability discussion must be used. These may be verified by demonstration, validated test results, or TTPs.

If the network device does not shut down by default upon audit failure or, when availability is an overriding concern, and described responses in the vulnerability discussion are not performed, this is a finding.

Vulnerability Number

V-55157

Documentable

False

Rule Version

SRG-APP-000109-NDM-000233

Severity Override Guidance

Determine if the network device shuts down by default upon audit failure. When availability is an overriding concern, responses described in the vulnerability discussion must be used. These may be verified by demonstration, validated test results, or TTPs.

If the network device does not shut down by default upon audit failure or, when availability is an overriding concern, and described responses in the vulnerability discussion are not performed, this is a finding.

Check Content Reference

M

Target Key

2729

Comments