STIGQter: STIG Summary: Multifunction Device and Network Printers STIG Version: 2 Release: 14 Benchmark Date: 25 Oct 2019:

The MFD must be configured to prohibit the use of all unnecessary and/or nonsecure functions, physical and logical ports, protocols, and/or services.

DISA Rule

SV-106815r1_rule

Vulnerability Number

V-97711

Group Title

MFD03.002

Rule Version

MFD03.002

Severity

CAT II

CCI(s)

• CCI-000382 - The organization configures the information system to prohibit or restrict the use of organization-defined functions, ports, protocols, and/or services.

Weight

10

Fix Recommendation

Configure the MFD to prohibit the use of all unnecessary and/or nonsecure functions, ports, protocols, and/or services. This included hardware ports, for example USB ports.

Check Contents

Determine if the network device prohibits the use of all unnecessary and/or nonsecure functions, ports, protocols, and/or services. This includes hardware ports such as USB ports.

If any unnecessary or nonsecure functions, ports, protocols and/or services are permitted, this is a finding.

Vulnerability Number

V-97711

Documentable

False

Rule Version

MFD03.002

Severity Override Guidance

Determine if the network device prohibits the use of all unnecessary and/or nonsecure functions, ports, protocols, and/or services. This includes hardware ports such as USB ports.

If any unnecessary or nonsecure functions, ports, protocols and/or services are permitted, this is a finding.

Check Content Reference

M

Target Key

551

Comments