STIGQter: STIG Summary: Video Services Policy STIG Version: 1 Release: 11 Benchmark Date: 24 Apr 2020:

The VTC system and components must not have default or factory passwords.

DISA Rule

SV-18861r2_rule

Vulnerability Number

V-17687

Group Title

RTS-VTC 2020

Rule Version

RTS-VTC 2020.00

Severity

CAT I

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Implement changing all VTC system and component default and factory passwords.

Check Contents

Review site documentation to confirm VTC system and component default and factory passwords have been changed. This includes SNMP community strings must be changed or replaced prior to the VTU being placed into service. If the VTC system and component default and factory passwords are not changed, this is a finding.

Note: During APL testing, this is a finding in the event default passwords cannot be changed on VTC or VTU.

Vulnerability Number

V-17687

Documentable

False

Rule Version

RTS-VTC 2020.00

Severity Override Guidance

Review site documentation to confirm VTC system and component default and factory passwords have been changed. This includes SNMP community strings must be changed or replaced prior to the VTU being placed into service. If the VTC system and component default and factory passwords are not changed, this is a finding.

Note: During APL testing, this is a finding in the event default passwords cannot be changed on VTC or VTU.

Check Content Reference

M

Responsibility

Information Assurance Officer

Target Key

1418

Comments