STIGQter: STIG Summary: HPE 3PAR StoreServ 3.2.x Security Technical Implementation Guide Version: 1 Release: 3 Benchmark Date: 28 Jul 2017:

The storage system in a hardened configuration must be configured to disable the Remote Copy feature, unless needed.

DISA Rule

SV-85105r2_rule

Vulnerability Number

V-70483

Group Title

SRG-OS-000095-GPOS-00049

Rule Version

HP3P-32-001001

Severity

CAT I

CCI(s)

• CCI-000381 - The organization configures the information system to provide only essential capabilities.

Weight

10

Fix Recommendation

Determine whether Remote Copy operation was permitted under an exception.

If this feature was not permitted, then disable the Remote Copy feature with the following command:

cli% stoprcopy

Check Contents

Verify the Remote Copy feature is not running via the following command:

cli% showrcopy
Remote Copy is not configured on this system.

Review the requirements by the Information Owner to determine whether the site requires the Remote Copy feature in order to meet mission objectives.

If the Status is "Started" and there is no documented requirement for this usage, this is a finding.

Any other response is not a finding.

Vulnerability Number

V-70483

Documentable

False

Rule Version

HP3P-32-001001

Severity Override Guidance

Verify the Remote Copy feature is not running via the following command:

cli% showrcopy
Remote Copy is not configured on this system.

Review the requirements by the Information Owner to determine whether the site requires the Remote Copy feature in order to meet mission objectives.

If the Status is "Started" and there is no documented requirement for this usage, this is a finding.

Any other response is not a finding.

Check Content Reference

M

Target Key

3013

Comments