Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-34621 | SRG-NET-000127-IDPS-00094 | SV-45495r1_rule | Medium |
Description |
---|
Uncoordinated or incorrect configuration changes to network components can potentially lead to network outages and possibly compromises. Centrally managing configuration changes for the IDPS can ensure they are done at the correct time and if necessary in synchronization with each other which can be vital for nodes that peer and require compatible configurations. Centralized configuration management also provides visibility and tracking of enterprise level activity promoting a sound configuration management procedure as well as an aid for troubleshooting network problems. |
STIG | Date |
---|---|
Intrusion Detection and Prevention Systems (IDPS) Security Requirements Guide | 2012-11-19 |
Check Text ( C-42844r1_chk ) |
---|
Verify a management console is installed which permits viewing and verification of the configuration of sensors, load balancers, and other IDPS components. If automated mechanisms to centrally verify configuration settings are not used, this is a finding. |
Fix Text (F-38892r1_fix) |
---|
Install and configure a management console on the management network. |