STIGQter: STIG Summary: IBM DataPower Network Device Management Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Oct 2017:

The DataPower Gateway must enforce access restrictions associated with changes to device configuration.

DISA Rule

SV-79649r1_rule

Vulnerability Number

V-65159

Group Title

SRG-APP-000380-NDM-000304

Rule Version

WSDP-NM-000106

Severity

CAT II

CCI(s)

• CCI-001813 - The information system enforces access restrictions.

Weight

10

Fix Recommendation

Configure DataPower Gateway to restrict actions associated with device configuration. This is defined and enforced through group and user access privileges as well as DataPower's Role-based management settings.

Configure these settings using the DataPower WebGUI at Administration >> Access.

Check Contents

In the DataPower web interface, navigate to Administration >> Access. Check User Account, User Group, and RBM settings to ensure that appropriate access restrictions are in place

If the User Account, User Group, and RBM settings have not been configured, this is a finding.

Vulnerability Number

V-65159

Documentable

False

Rule Version

WSDP-NM-000106

Severity Override Guidance

In the DataPower web interface, navigate to Administration >> Access. Check User Account, User Group, and RBM settings to ensure that appropriate access restrictions are in place

If the User Account, User Group, and RBM settings have not been configured, this is a finding.

Check Content Reference

M

Target Key

2861

Comments