Management protocols, with the exception of HTTPS and SNMPv3, must be disabled at all times except when necessary.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-6783 | MFD02.003 | SV-7005r2_rule | DCPP-1 | Medium |
| Description |
|---|
| Unneeded protocols expose the device and the network to unnecessary vulnerabilities. |
| STIG | Date |
|---|---|
| Multifunction Device and Network Printers STIG | 2019-10-07 |
Details
| Check Text ( C-2969r2_chk ) |
|---|
| Verify that all management protocols are disabled unless approved by the organization's AO/ISSM. Protocols may be enabled temporarily if needed to upgrade firmware or configure the device, but must be disabled immediately when this activity is completed. HTTPS and SNMPv3 may be used but must be configured in accordance with the requirements of the Network Infrastructure STIG. If management protocols other than HTTPS and SNMPv3 are enabled unnecessarily or without AO/ISSM approval, this is a finding. |
| Fix Text (F-6436r2_fix) |
|---|
| Disable all management protocols except HTTPS and SNMPv3 unless approval has been granted by the organization's AO/ISSM. |