UCF STIG Viewer Logo

The IDPS must notify the designated system administrators when accounts are modified.


Overview

Finding ID Version Rule ID IA Controls Severity
SRG-NET-000008-IDPS-000029 SRG-NET-000008-IDPS-000029 SRG-NET-000008-IDPS-000029_rule Low
Description
Account management and distribution is vital to the security of any IDPS. Account management by a designated authority ensures access to the IDPS is being controlled in a secured manner by granting access to only authorized personnel with the appropriate and necessary privileges. Without a formal approval process for the deployment and modification of accounts, personnel without the proper security clearance may gain access to critical network nodes. It is imperative that all personnel who are granted accounts have completed and submitted the proper request forms and have been approved by the designated authority. Auditing account creation and modification, along with an automatic notification to appropriate individuals, will provide the necessary reconciliation that account management procedures are being followed.
STIG Date
IDPS Security Requirements Guide (SRG) 2012-03-08

Details

Check Text ( C-43147_chk )
Navigate to the alert or notifications configuration module on the management console.
Verify the list of configured alerts includes a notice for account modification, such as changes to access or privileges.

If the system is not configured to notify the designated system administrators when accounts are modified, this is a finding.
Fix Text (F-43147_fix)
Configure the device to notify the designated system administrators when accounts are modified.
Configure the device to notify the designated system administrators when account privileges are modified.