The network element must be configured to implement automated patch management tools to facilitate flaw remediation to network components.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000243-FW-NA	SRG-NET-000243-FW-NA	SRG-NET-000243-FW-NA_rule		Low

Description
It is imperative that the organization promptly install security relevant software updates from an authorized patch management server to mitigate the risk of new vulnerabilities. Flaws discovered during security assessments, continuous monitoring, incident response activities, or information system error handling, are also addressed expeditiously. Software obtained from unauthorized sources may contain malicious code and may put the enclave at risk. This requirement applies to flaw remediation systems. Flaw remediation is not a function of the firewall.

Description

It is imperative that the organization promptly install security relevant software updates from an authorized patch management server to mitigate the risk of new vulnerabilities. Flaws discovered during security assessments, continuous monitoring, incident response activities, or information system error handling, are also addressed expeditiously. Software obtained from unauthorized sources may contain malicious code and may put the enclave at risk. This requirement applies to flaw remediation systems. Flaw remediation is not a function of the firewall.

STIG	Date
Firewall Security Requirements Guide	2012-12-10

Details

Check Text ( C-SRG-NET-000243-FW-NA_chk )
This requirement is NA for firewall. No fix required.

Fix Text (F-SRG-NET-000243-FW-NA_fix)
This requirement is NA for firewall. No fix required.