STIGQter: STIG Summary: Intrusion Detection and Prevention Systems (IDPS) Security Requirements Guide Version: 2 Release: 6 Benchmark Date: 24 Jul 2020:

IDPS components, including sensors, event databases, and management consoles must integrate with a network-wide monitoring capability.

DISA Rule

SV-69611r1_rule

Vulnerability Number

V-55365

Group Title

SRG-NET-000383-IDPS-00208

Rule Version

SRG-NET-000383-IDPS-00208

Severity

CAT II

CCI(s)

• CCI-002656 - The organization configures individual intrusion detection tools into an information system-wide intrusion detection system.

Weight

10

Fix Recommendation

Configure the IDPS components, including sensors, event databases, and management consoles to integrate with a network-wide monitoring capability.

Check Contents

Verify the IDPS integrates with a network-wide monitoring capability which includes sensors, event databases, and management consoles.

If the IDPS does not integrate with a network-wide monitoring capability which includes sensors, event databases, and management consoles, this is a finding.

Vulnerability Number

V-55365

Documentable

False

Rule Version

SRG-NET-000383-IDPS-00208

Severity Override Guidance

Verify the IDPS integrates with a network-wide monitoring capability which includes sensors, event databases, and management consoles.

If the IDPS does not integrate with a network-wide monitoring capability which includes sensors, event databases, and management consoles, this is a finding.

Check Content Reference

M

Target Key

2358

Comments