STIGQter: STIG Summary: Cisco ISE NAC Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 13 Apr 2021:

The Cisco ISE must be configured to notify the user before proceeding with remediation of the user's endpoint device when automated remediation is used.

DISA Rule

SV-242582r714056_rule

Vulnerability Number

V-242582

Group Title

SRG-NET-000015-NAC-000070

Rule Version

CSCO-NC-000080

Severity

CAT III

CCI(s)

• CCI-000213 - The information system enforces approved authorizations for logical access to information and system resources in accordance with applicable access control policies.

Weight

10

Fix Recommendation

Configure a message prior to remediation:

1. Navigate to Work Centers >> Posture >> Policy Elements >> Requirements.
2. On the requirements under "Remediation Actions", define a message in the "Message Shown to Agent User".
3. Choose "Done".
4. Choose "Save".

Check Contents

Verify that each requirement used has a message to display.

1. Navigate to Work Centers >> Posture >> Posture Policy.
2. Make a note of each "Requirement" tied to an enabled Posture Policy.
3. Navigate to Work Centers >> Posture >> Policy Elements >> Requirements.
4. Verify that each requirement noted has a message in the "Message Shown to Agent User" box.

If a requirement that is used does not have a message, this is a finding.

Vulnerability Number

V-242582

Documentable

False

Rule Version

CSCO-NC-000080

Severity Override Guidance

Verify that each requirement used has a message to display.

1. Navigate to Work Centers >> Posture >> Posture Policy.
2. Make a note of each "Requirement" tied to an enabled Posture Policy.
3. Navigate to Work Centers >> Posture >> Policy Elements >> Requirements.
4. Verify that each requirement noted has a message in the "Message Shown to Agent User" box.

If a requirement that is used does not have a message, this is a finding.

Check Content Reference

M

Target Key

5383

Comments