The network device must automatically implement organizationally defined safeguards and countermeasures if security functions or mechanisms are changed inappropriately.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000124-NDM-000082	SRG-NET-000124-NDM-000082	SRG-NET-000124-NDM-000082_rule		Medium

Description
Changes to the security functionality of the network device can have significant effects on the overall security of the network. Therefore, only qualified and authorized individuals are allowed administrative access to the network device for implementing any changes or upgrades. In order to ensure a prompt response to unauthorized changes to network device security functions, the organizations will define the safeguards the device must undertake in the event these changes occur.

Description

Changes to the security functionality of the network device can have significant effects on the overall security of the network. Therefore, only qualified and authorized individuals are allowed administrative access to the network device for implementing any changes or upgrades. In order to ensure a prompt response to unauthorized changes to network device security functions, the organizations will define the safeguards the device must undertake in the event these changes occur.

STIG	Date
Network Device Management Security Requirements Guide	2013-07-30

Details

Check Text ( C-SRG-NET-000124-NDM-000082_chk )
Verify the network device automatically implements organizationally defined safeguards and countermeasures if security functions or mechanisms are changed inappropriately. If the network device does not automatically implement these safeguards and countermeasures, this is a finding.

Fix Text (F-SRG-NET-000124-NDM-000082_fix)
Configure the network device to automatically implement safeguards and countermeasures if security functions or mechanisms are changed inappropriately.