The network element must terminate all sessions when non-local maintenance is completed.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-34695	SRG-NET-000178-IDPS-NA	SV-45579r1_rule		Low

Description
In the event the remote node has abnormally terminated or an upstream link from the managed device is down, the management session will be terminated; thereby, freeing device resources and eliminating any possibility of an unauthorized user being orphaned to an open idle session of the managed device. All sessions must terminate. The IDPS does not know if it is non-local access. Protection of non-local maintenance and diagnostic sessions is not a function of the IDPS.

Description

In the event the remote node has abnormally terminated or an upstream link from the managed device is down, the management session will be terminated; thereby, freeing device resources and eliminating any possibility of an unauthorized user being orphaned to an open idle session of the managed device. All sessions must terminate. The IDPS does not know if it is non-local access. Protection of non-local maintenance and diagnostic sessions is not a function of the IDPS.

STIG	Date
Intrusion Detection and Prevention Systems (IDPS) Security Requirements Guide	2012-11-19

Details

Check Text ( C-42932r1_chk )
This requirement is NA for IDPS. No fix required.

Fix Text (F-38976r1_fix)
This requirement is NA for IDPS. No fix required.