STIGQter: STIG Summary: Voice Video Session Management Security Requirements Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:

The Voice Video Session Manager must provide centralized management of session (call) records.

DISA Rule

SV-206842r508661_rule

Vulnerability Number

V-206842

Group Title

SRG-NET-000333

Rule Version

SRG-NET-000333-VVSM-00028

Severity

CAT II

CCI(s)

• CCI-001844 - The information system provides centralized management and configuration of the content to be captured in audit records generated by organization-defined information system components.

Weight

10

Fix Recommendation

Configure the Voice Video Session Manager to provide centralized management of session records.

Check Contents

Verify the Voice Video Session Manager provides centralized management of session records. Centralized management of session records may be a function of the Voice Video Session Manager or offloaded to an ancillary device. When records are offloaded, the Voice Video Session Manager must provide configuration settings to connect to the ancillary device.

If the Voice Video Session Manager does not provide centralized management of session records, this is a finding.

Vulnerability Number

V-206842

Documentable

False

Rule Version

SRG-NET-000333-VVSM-00028

Severity Override Guidance

Verify the Voice Video Session Manager provides centralized management of session records. Centralized management of session records may be a function of the Voice Video Session Manager or offloaded to an ancillary device. When records are offloaded, the Voice Video Session Manager must provide configuration settings to connect to the ancillary device.

If the Voice Video Session Manager does not provide centralized management of session records, this is a finding.

Check Content Reference

M

Target Key

2916

Comments