STIGQter: STIG Summary: ISEC7 Sphere Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:

The ISEC7 EMM Suite must alert the ISSO and SA (at a minimum) in the event of an audit processing failure.

DISA Rule

SV-224765r505933_rule

Vulnerability Number

V-224765

Group Title

SRG-APP-000108

Rule Version

ISEC-06-000380

Severity

CAT II

CCI(s)

• CCI-000139 - The information system alerts designated organization-defined personnel or roles in the event of an audit processing failure.

Weight

10

Fix Recommendation

Login to the ISEC7 EMM Suite console.
Navigate to Administration >> Configuration >> Notifications >> Recipient Lists.
Select Edit next to the Systems Notifications.
Under Add recipient, select Email as the Type and enter the correct email address of recipients.
Select Add.

Check Contents

Login to the ISEC7 EMM Suite console.
Navigate to Administration >> Configuration >> Notifications >> Recipient Lists.
Select Edit next to the Systems Notifications.
Verify the email address or distribution list has been added.

If a recipient email address or distribution list has not been added to System Notifications, this is a finding.

Vulnerability Number

V-224765

Documentable

False

Rule Version

ISEC-06-000380

Severity Override Guidance

Login to the ISEC7 EMM Suite console.
Navigate to Administration >> Configuration >> Notifications >> Recipient Lists.
Select Edit next to the Systems Notifications.
Verify the email address or distribution list has been added.

If a recipient email address or distribution list has not been added to System Notifications, this is a finding.

Check Content Reference

M

Target Key

4200

Comments