Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The KVM switch has the ability to support a RAS connection, this feature is not disabled or the connectors on the KVM switch supporting this feature are not blocked with a tamper resistant seal.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-6687 | KVM02.003.00 | SV-6849r1_rule | EBRP-1 | High |
| Description |
|---|
| KVM switches that support Dialup Remote Access (RAS) do not support a robust identification and authorization process or robust auditing. This feature will not be used. The tamper resistant seals over the port(s) that support this feature will serve as an indicator that the feature may have been used for unauthorized access to the KVM switch. The IAO has not ensured that if the KVM switch has the ability to support a RAS connection, this feature is disabled and the connectors on the KVM switch supporting this feature are blocked with a tamper resistant seal. |
| STIG | Date |
|---|---|
| Keyboard Video and Mouse Switch STIG | 2014-08-04 |
Details
| Check Text ( C-2637r1_chk ) |
|---|
| The reviewer will, with the assistance of the IAO, will verify that if the KVM switch has the ability to support a RAS connection, this feature is disabled and the connectors on the KVM switch supporting this feature are blocked with a tamper resistant seal. |
| Fix Text (F-6277r1_fix) |
|---|
| Configure the KVM switch to disable the RAS feature, remove all hardware from the KVM switch that supports this feature, and block all connectors on the KVM switch that support this feature with tamper resistant seals. |