The IDPS must notify the user of the number of unsuccessful login attempts occurring during organizationally defined time period.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-34518 | SRG-NET-000051-IDPS-00045 | SV-45360r1_rule | Low |
| Description |
|---|
| Providing users with information regarding the number of unsuccessful logon attempts to the local device that has occurred over an organizationally defined time period. Without this information, the user may not become aware that unauthorized activity has occurred. |
| STIG | Date |
|---|---|
| Intrusion Detection and Prevention Systems (IDPS) Security Requirements Guide | 2012-11-19 |
Details
| Check Text ( C-42708r1_chk ) |
|---|
| Connect to the management console. Note the number of unsuccessful logon attempts occurring during organizationally defined time period. Repeat the above steps for each sensor. If the number of unsuccessful logon attempts that happens during an organizationally defined time period is displayed, this is a finding. |
| Fix Text (F-38756r1_fix) |
|---|
| Configure the IDPS management console to display the number of unsuccessful logon attempts occurring during organizationally defined time period. |