Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-66685 | SRG-NET-000512-VVEP-00002 | SV-81175r1_rule | Medium |
Description |
---|
IEEE 802.1x is a protocol used to control access to LAN services via a network access switchport or wireless access point that requires a device or user to authenticate to the network element and become authorized by the authentication server before accessing the network. This standard is used to activate the network access switchport limiting traffic to a specific VLAN or install traffic filters. Implementing 802.1x port security on each access switchport denies all other MAC users, which eliminates the security risk of additional users attaching to a switch to bypass authentication. The hardware Voice Video Endpoint must be an 802.1x supplicant and integrate into the 802.1x access control system. When 802.1x is used, all devices connecting to the LAN are required to use 802.1x. |
STIG | Date |
---|---|
Voice Video Endpoint Security Requirements Guide | 2019-03-15 |
Check Text ( C-67311r1_chk ) |
---|
If the Voice Video Endpoint is not a hardware endpoint, this check procedure is Not Applicable. If an 802.1x network access control system is not implemented on the network, this is Not Applicable. Verify the hardware Voice Video Endpoint is an 802.1x supplicant. If the hardware Voice Video Endpoint is not an 802.1x supplicant, this is a finding. |
Fix Text (F-72761r1_fix) |
---|
Configure the hardware Voice Video Endpoint to be an 802.1x supplicant in the implemented 802.1x network access control system. |