The network element must use automated mechanisms to restrict the use of maintenance tools to authorized personnel only.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
SRG-NET-000172-RTR-NA	SRG-NET-000172-RTR-NA	SRG-NET-000172-RTR-NA_rule		Medium

Description
With the growth of widespread network-delivered malware infections, organizations tend to overlook the spread of malware from system to system through removable media. Once an infected medium is connected to the information system, any worms on it will spread through the system. Maintenance tools connecting to a network element for diagnostics could be carrying malware; therefore, their use must be restricted to authorized personnel. This requirement is applicable to network device management and is not applicable to the routing function.

Description

With the growth of widespread network-delivered malware infections, organizations tend to overlook the spread of malware from system to system through removable media. Once an infected medium is connected to the information system, any worms on it will spread through the system. Maintenance tools connecting to a network element for diagnostics could be carrying malware; therefore, their use must be restricted to authorized personnel. This requirement is applicable to network device management and is not applicable to the routing function.

STIG	Date
Router Security Requirements Guide	2013-07-30

Details

Check Text ( C-SRG-NET-000172-RTR-NA_chk )
This requirement is NA for router.

Fix Text (F-SRG-NET-000172-RTR-NA_fix)
This requirement is NA for router.