STIGQter: STIG Summary: Network Infrastructure Policy Security Technical Implementation Guide Version: 9 Release: 10 Benchmark Date: 24 Jan 2020:

An Out-of-Band (OOB) management network must be deployed for MAC I systems or 24x7 personnel must have console access for device management.

DISA Rule

SV-15442r2_rule

Vulnerability Number

V-14716

Group Title

Device management is not using an OOB network.

Rule Version

NET1622

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

The network administrator will manage devices via direct connection or access via OOB management network.

Check Contents

Review the network topology and verify that an OOB network provides connectivity from the management network to all of the managed network elements.

If an OOB network has not been deployed, verify that the network administrators have management access via the console to the managed network elements.

If there is no OOB network or if network administrators do not have management access via the console to the managed network elements, this is a finding.

Vulnerability Number

V-14716

Documentable

False

Rule Version

NET1622

Severity Override Guidance

Review the network topology and verify that an OOB network provides connectivity from the management network to all of the managed network elements.

If an OOB network has not been deployed, verify that the network administrators have management access via the console to the managed network elements.

If there is no OOB network or if network administrators do not have management access via the console to the managed network elements, this is a finding.

Check Content Reference

M

Target Key

838

Comments