The information system must route all networked, privileged accesses through a dedicated, managed interface for purposes of access control and auditing.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-27046	SRG-APP-NA	SV-34341r1_rule		Medium

Description
Managed interfaces employing boundary protection devices include: proxies, gateways, routers, firewalls, guards, or encrypted tunnels arranged in effective security architecture (e.g., routers protecting firewalls and application gateways residing on a protected sub network commonly referred to as a demilitarized zone or DMZ). This is a configuration requirement to route privileged access through a dedicated managed interface (e.g., firewall) and does not apply to applications.

Description

Managed interfaces employing boundary protection devices include: proxies, gateways, routers, firewalls, guards, or encrypted tunnels arranged in effective security architecture (e.g., routers protecting firewalls and application gateways residing on a protected sub network commonly referred to as a demilitarized zone or DMZ). This is a configuration requirement to route privileged access through a dedicated managed interface (e.g., firewall) and does not apply to applications.

STIG	Date
Application Security Requirements Guide	2011-12-28

Details

Check Text ( None )
None

Fix Text (None)
None