STIGQter: STIG Summary: IBM DataPower Network Device Management Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Oct 2017:

The DataPower Gateway must use automated mechanisms to alert security personnel to threats identified by authoritative sources (e.g., CTOs) and in accordance with CJCSM 6510.01B.

DISA Rule

SV-79663r1_rule

Vulnerability Number

V-65173

Group Title

SRG-APP-000516-NDM-000333

Rule Version

WSDP-NM-000131

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.
• CCI-001274 - The organization employs automated mechanisms to alert security personnel of organization-defined inappropriate or unusual activities with security implications.

Weight

10

Fix Recommendation

Go to Administration >> Access >> SNMP Settings. Configure the IP address, port, and security settings.

Go to the Trap and Notification Targets tab. Enter the remote server/receiver information.

Check Contents

Go to Administration >> Access >> SNMP Settings. Verify the IP address, port, and security settings. Go to the Trap and Notification Targets tab. Verify the remote server/receiver information. If these values have not been set, this is a finding.

Vulnerability Number

V-65173

Documentable

False

Rule Version

WSDP-NM-000131

Severity Override Guidance

Go to Administration >> Access >> SNMP Settings. Verify the IP address, port, and security settings. Go to the Trap and Notification Targets tab. Verify the remote server/receiver information. If these values have not been set, this is a finding.

Check Content Reference

M

Target Key

2861

Comments