STIGQter: STIG Summary: IBM DataPower Network Device Management Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Oct 2017:

The DataPower Gateway must not use 0.0.0.0 as the management IP address.

DISA Rule

SV-79679r1_rule

Vulnerability Number

V-65189

Group Title

SRG-APP-000038-NDM-000213

Rule Version

WSDP-NM-000143

Severity

CAT II

CCI(s)

• CCI-001368 - The information system enforces approved authorizations for controlling the flow of information within the system based on organization-defined information flow control policies.

Weight

10

Fix Recommendation

To configure the DataPower appliance for web management:

Using an administrator account, log on to the default domain of the appliance.

On the Configure Web Management Service screen, complete the required information.

Set the Administrative state to “enabled”.

For the Local Address, use the IP address from the management subnet assigned to the unit.

Check Contents

Using an administrator account, log on to the default domain of the appliance.

Navigate to Network >> Management >> Web Management Service.

View the Local Address field; if the value is “0.0.0.0”, this is a finding.

Vulnerability Number

V-65189

Documentable

False

Rule Version

WSDP-NM-000143

Severity Override Guidance

Using an administrator account, log on to the default domain of the appliance.

Navigate to Network >> Management >> Web Management Service.

View the Local Address field; if the value is “0.0.0.0”, this is a finding.

Check Content Reference

M

Target Key

2861

Comments