STIGQter: STIG Summary: Forescout Network Device Management Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020: STIGQter: STIG Summary: Forescout Network Device Management Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:SV-230950r615886_rule
V-230950
SRG-APP-000133-NDM-000244
FORE-NM-000230
CAT II
10
Configure Forescout to prevent access to change the software resident within software libraries for unauthorized personnel.
View each of the Forescout user group accounts that are associated with the external user directory groups (e.g., RADIUS, Active directory, LDAP). Perform the following actions for each group.
1. Log on to the Forescout Console and select Tools >> Options >> Console User Profiles.
2. Select the user group that is not authorized access according to the SSP.
3. Select "Edit" and the "Permissions" tab.
4. Unselect the options for "Module Management" and "Software Upgrade".
Determine if there are users defined in Forescout that are not authorized to change the software libraries.
Verify that Administrator privileges have been restricted for these users.
This is verified by reviewing the administrator account profiles and auditing the assigned privilege for updated Forescout software.
1. Log on to the Forescout Console and select Tools >> Options >> Console User Profiles.
2. Select the user group that is not authorized access according to the SSP.
3. Select "Edit" and the "Permissions" tab
4. Verify the users do not have the "Plugin Management" and "Software Upgrade" options selected.
If Forescout is not configured to limit privileges to change the software resident within software libraries for unauthorized users, this is a finding.
V-230950
False
FORE-NM-000230
Determine if there are users defined in Forescout that are not authorized to change the software libraries.
Verify that Administrator privileges have been restricted for these users.
This is verified by reviewing the administrator account profiles and auditing the assigned privilege for updated Forescout software.
1. Log on to the Forescout Console and select Tools >> Options >> Console User Profiles.
2. Select the user group that is not authorized access according to the SSP.
3. Select "Edit" and the "Permissions" tab
4. Verify the users do not have the "Plugin Management" and "Software Upgrade" options selected.
If Forescout is not configured to limit privileges to change the software resident within software libraries for unauthorized users, this is a finding.
M
5245