UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The network device must notify the appropriate individuals when accounts are modified.


Overview

Finding ID Version Rule ID IA Controls Severity
SRG-NET-000008-NDM-000008 SRG-NET-000008-NDM-000008 SRG-NET-000008-NDM-000008_rule Low
Description
Because the accounts used to access the network device components are privileged or system level accounts, account management is vital to the security of the system. In order to respond to events affecting user accessibility and network device service processing, the system must audit account modification and, when required, notify the identified individuals, so they can investigate the event to ensure its validity. Such a capability greatly reduces the risk of unauthorized access to the system and provides logging that can be used for forensic purposes. This requirement is applicable to accounts created or maintained using the network device application itself rather than the underlying OS or an authentication server. Accounts created and maintained on an authentication server (e.g., RADIUS, LDAP, or Active Directory) are secured using the applicable security guide or STIG.
STIG Date
Network Device Management Security Requirements Guide 2013-07-30

Details

Check Text ( C-SRG-NET-000008-NDM-000008_chk )
Verify the list of configured alerts includes a notice for account modification, such as changes to access or privileges.
If there is not a viewable, configurable option, request the administrator modify an account and validate that notification is sent to the organizationally identified individuals.

If the system is not configured to notify the organizationally identified individuals when accounts are modified, this is a finding.
Fix Text (F-SRG-NET-000008-NDM-000008_fix)
Configure the network device to notify organizationally identified individuals (e.g., designated system administrators and/or account holder) when any modification is made to the account (e.g., changes to account privileges).