Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The option of Automatic Number Identification (ANI) is available but not being used.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-7991 | DSN18.06 | SV-8477r1_rule | ECSC-1 | unknown |
| Description |
|---|
| Requirement: The IAO will ensure that Automatic Number Identification (ANI) is enabled on modem lines to record access to remote access ports if this function is available. The IAO, or authorized security personnel, will maintain and review ANI logs. These records should be kept for the previous twelve months. Automatic Number Identification (ANI) logs are ideal for auditing unauthorized accesses and toll-fraud. |
| STIG | Date |
|---|---|
| Defense Switched Network STIG | 2015-01-02 |
Details
| Check Text ( C-7302r1_chk ) |
|---|
| Interview the IAO and/or SA to confirm compliance through discussion, review of site policy and procedures, diagrams, documentation, configuration files, logs, records, DAA/other approvals, etc as applicable |
| Fix Text (F-7566r1_fix) |
|---|
| > Ensure the use of the the ANI feature, if available, for all modems connected to DSN system administration/maintenance dial-up ports. Maintain and review ANI logs periodically. Audit records should be stored for a period of twelve months. |