STIGQter: STIG Summary: Voice Video Session Management Security Requirements Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:

The Voice Video Session Manager must prohibit remote activation of collaborative computing devices (excluding centrally managed, dedicated videoconference suites located in approved videoconference locations).

DISA Rule

SV-206854r508661_rule

Vulnerability Number

V-206854

Group Title

SRG-NET-000512

Rule Version

SRG-NET-000512-VVSM-00012

Severity

CAT II

CCI(s)

• CCI-001150 - The information system prohibits remote activation of collaborative computing devices, excluding the organization-defined exceptions where remote activation is to be allowed.

Weight

10

Fix Recommendation

Configure the Voice Video Session Manager, except for centrally managed, dedicated videoconference suites located in approved videoconference locations, to prohibit remote activation of collaborative computing devices.

Check Contents

Verify the Voice Video Session Manager prohibits remote activation of collaborative computing devices. For centrally managed, dedicated videoconference suites located in approved videoconference locations with full documentation, this requirement is not applicable.

If the Voice Video Session Manager does not prohibit remote activation of collaborative computing devices, this is a finding.

Vulnerability Number

V-206854

Documentable

False

Rule Version

SRG-NET-000512-VVSM-00012

Severity Override Guidance

Verify the Voice Video Session Manager prohibits remote activation of collaborative computing devices. For centrally managed, dedicated videoconference suites located in approved videoconference locations with full documentation, this requirement is not applicable.

If the Voice Video Session Manager does not prohibit remote activation of collaborative computing devices, this is a finding.

Check Content Reference

M

Target Key

2916

Comments