The network element must separate user functionality (including user interface services) from information system management functionality.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000182-FW-NA	SRG-NET-000182-FW-NA	SRG-NET-000182-FW-NA_rule		Low

Description
The firewall implementation must prevent the presentation of information system management functionality at an interface for general (i.e., non-privileged) users. The intent of this control enhancement is to ensure administration options are not available to general or unauthorized users (including prohibiting the use of the grey-out option commonly used to eliminate accessibility to such information). For example, administration options are not presented until the user has appropriately established a session with administrator privileges. Non-privileged (general) users are not allowed access to the firewall, thus this requirement is not applicable.

Description

The firewall implementation must prevent the presentation of information system management functionality at an interface for general (i.e., non-privileged) users. The intent of this control enhancement is to ensure administration options are not available to general or unauthorized users (including prohibiting the use of the grey-out option commonly used to eliminate accessibility to such information). For example, administration options are not presented until the user has appropriately established a session with administrator privileges. Non-privileged (general) users are not allowed access to the firewall, thus this requirement is not applicable.

STIG	Date
Firewall Security Requirements Guide	2012-12-10

Details

Check Text ( C-SRG-NET-000182-FW-NA_chk )
This requirement is NA for firewall. No fix required.

Fix Text (F-SRG-NET-000182-FW-NA_fix)
This requirement is NA for firewall. No fix required.