UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The network device must implement nondiscretionary access control policies over an organization defined set of users and resources.


Overview

Finding ID Version Rule ID IA Controls Severity
SRG-NET-000017-NDM-000017 SRG-NET-000017-NDM-000017 SRG-NET-000017-NDM-000017_rule Low
Description
When nondiscretionary access control mechanisms are implemented, security labels are assigned to securable objects and users are granted access to the objects only if their level of access matches that required by the security label. Types of nondiscretionary access control include Attribute-Based Access Control, Mandatory Access Control, and Originator Controlled Access Control. Without these security policies, security labels on restricted objects stored on the network device may be accessed or changed by unauthorized users.
STIG Date
Network Device Management Security Requirements Guide 2013-07-30

Details

Check Text ( C-SRG-NET-000017-NDM-000017_chk )
Verify the network device is configured to implement access control by assigning rights and permissions to users and resources.

If the network device is not configured with rights and permissions for users and resources, this is a finding.
Fix Text (F-SRG-NET-000017-NDM-000017_fix)
Configure the network device using nondiscretionary access control as required by organizationally defined policies.