STIGQter: STIG Summary: Forescout Network Access Control Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

Forescout must send an alert to the Information System Security Manager (ISSM) and System Administrator (SA), at a minimum, when critical security issues are found that put the network at risk.

DISA Rule

SV-233316r611394_rule

Vulnerability Number

V-233316

Group Title

SRG-NET-000015-NAC-000100

Rule Version

FORE-NC-000080

Severity

CAT II

CCI(s)

CCI-000213 - The information system enforces approved authorizations for logical access to information and system resources in accordance with applicable access control policies.

Weight

Fix Recommendation

Log on to the Forescout UI.

1. Locate the Authentication & Authorization policy.
2. Ensure the Authentication & Authorization policy happens prior to any NAC check.

Check Contents

Verify Forescout performs device authentication before policy assessment is performed.

If device authentication is not completed prior to the NAC check, this is a finding.

Vulnerability Number

V-233316

Documentable

False

Rule Version

FORE-NC-000080

Severity Override Guidance

Verify Forescout performs device authentication before policy assessment is performed.

If device authentication is not completed prior to the NAC check, this is a finding.

Check Content Reference

Target Key

5250

Forescout must send an alert to the Information System Security Manager (ISSM) and System Administrator (SA), at a minimum, when critical security issues are found that put the network at risk.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments