UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The IDPS must employ automated mechanisms to centrally apply configuration settings.


Overview

Finding ID Version Rule ID IA Controls Severity
SRG-NET-000126-IDPS-000118 SRG-NET-000126-IDPS-000118 SRG-NET-000126-IDPS-000118_rule Medium
Description
Uncoordinated or incorrect configuration changes to network components can potentially lead to network outages and possibly compromises. Centrally managing configuration changes for the IDPS can ensure they are done at the correct time and if necessary in synchronization with each other which can be vital for nodes that peer and require compatible configurations. Centralized configuration management also provides visibility and tracking of enterprise level activity promoting a sound configuration management procedure as well as an aid for troubleshooting network problems.
STIG Date
IDPS Security Requirements Guide (SRG) 2012-03-08

Details

Check Text ( C-43249_chk )
Verify a management console is installed which provides central configuration of sensors, load balances, and other IDPS components.
Verify system administrators can connect to the sensors from the central management console.

If automated mechanisms to centrally apply configuration settings are not used, this is a finding.
Fix Text (F-43249_fix)
Install and configure a management console on the management network.