STIGQter STIGQter: STIG Summary: ForeScout CounterACT ALG Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 26 Jan 2018:

CounterACT must send an alert to, at a minimum, the ISSO and SCA when an audit processing failure occurs.

DISA Rule

SV-90623r1_rule

Vulnerability Number

V-75935

Group Title

SRG-NET-000088-ALG-000054

Rule Version

CACT-AG-000004

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure CounterACT to send all alert notifications to, at a minimum, the ISSO and SCA when an audit processing failure occurs.

1. Log in to CounterACT’s Administrator interface.
2. Select Tools >> Options.
3. Select General.
4. Select the "+" next to general to open the submenu. Select email Preferences.
5. Ensure that the ISSO/SCA email address is configuration for notifications.

Check Contents

Verify CounterACT sends an alert to, at a minimum, the ISSO and SCA when an audit processing failure occurs.

1. Log in to the CounterACT Administrator interface.
2. Select Tools >> Options.
3. Select General.
4. Select the "+" next to general to open the submenu. Select email Preferences.
5. Ensure that the ISSO/SCA email address is configuration for notifications.

If CounterACT does not send an alert to, at a minimum, the ISSO and SCA when an audit processing failure occurs, this is a finding.

Vulnerability Number

V-75935

Documentable

False

Rule Version

CACT-AG-000004

Severity Override Guidance

Verify CounterACT sends an alert to, at a minimum, the ISSO and SCA when an audit processing failure occurs.

1. Log in to the CounterACT Administrator interface.
2. Select Tools >> Options.
3. Select General.
4. Select the "+" next to general to open the submenu. Select email Preferences.
5. Ensure that the ISSO/SCA email address is configuration for notifications.

If CounterACT does not send an alert to, at a minimum, the ISSO and SCA when an audit processing failure occurs, this is a finding.

Check Content Reference

M

Target Key

3223

Comments