STIGQter: STIG Summary: Juniper SRX SG NDM Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Apr 2021:

The Juniper SRX Services Gateway must generate an immediate alert message to the management console for account enabling actions.

DISA Rule

SV-229019r518235_rule

Vulnerability Number

V-229019

Group Title

SRG-APP-000516-NDM-000317

Rule Version

JUSX-DM-000024

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.
• CCI-001328 - The organization, if an information system component failure is detected, activates an organization-defined alarm and/or automatically shuts down the information system.

Weight

10

Fix Recommendation

The following commands configure the device to immediately display a message to any currently logged on administrator's console when changes are made to the configuration. This is an example method. Alerts must be sent immediately to the designated individuals (e.g., via Syslog configuration, SNMP trap, manned console message, or other events monitoring system).

[edit]
set system syslog users * change-log <info | any>

Check Contents

Verify the device is configured to display change-log events of severity info.

[edit]
show system syslog

If the system is not configured to display account enabling actions on the management console, this is a finding.

Vulnerability Number

V-229019

Documentable

False

Rule Version

JUSX-DM-000024

Severity Override Guidance

Verify the device is configured to display change-log events of severity info.

[edit]
show system syslog

If the system is not configured to display account enabling actions on the management console, this is a finding.

Check Content Reference

M

Target Key

4098

Comments