The network device must be configured to implement automated patch management tools to facilitate flaw remediation to network components.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000243-NDM-NA	SRG-NET-000243-NDM-NA	SRG-NET-000243-NDM-NA_rule		Low

Description
It is imperative that the organization promptly install security relevant software updates from an authorized patch management server to mitigate the risk of new vulnerabilities. Flaws discovered during security assessments, continuous monitoring, incident response activities, or information system error handling, are also addressed expeditiously. Software obtained from unauthorized sources may contain malicious code and may put the enclave at risk. This requirement applies to flaw remediation systems. Flaw remediation is not a function of network device management.

Description

It is imperative that the organization promptly install security relevant software updates from an authorized patch management server to mitigate the risk of new vulnerabilities. Flaws discovered during security assessments, continuous monitoring, incident response activities, or information system error handling, are also addressed expeditiously. Software obtained from unauthorized sources may contain malicious code and may put the enclave at risk. This requirement applies to flaw remediation systems. Flaw remediation is not a function of network device management.

STIG	Date
Network Device Management Security Requirements Guide	2013-07-30

Details

Check Text ( C-SRG-NET-000243-NDM-NA_chk )
This requirement is NA for network device management.

Fix Text (F-SRG-NET-000243-NDM-NA_fix)
This requirement is NA for network device management.