STIGQter: STIG Summary: Cisco ISE NAC Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 13 Apr 2021:

When endpoints fail the policy assessment, the Cisco ISE must create a record with sufficient detail suitable for forwarding to a remediation server for automated remediation or sending to the user for manual remediation.

DISA Rule

SV-242585r714065_rule

Vulnerability Number

V-242585

Group Title

SRG-NET-000015-NAC-000110

Rule Version

CSCO-NC-000110

Severity

CAT II

CCI(s)

• CCI-000213 - The information system enforces approved authorizations for logical access to information and system resources in accordance with applicable access control policies.

Weight

10

Fix Recommendation

Configure a message prior to remediation:

1. Navigate to Work Centers >> Posture >> Policy Elements >> Requirements.
2. On the requirements under "Remediation Actions" define a message in the "Message Shown to Agent User".
3. Choose "Done".
4. Choose "Save".

Check Contents

Verify that each requirement used has a message to display.

1. Navigate to Work Centers >> Posture >> Posture Policy.
2. Make a note of each "Requirement" tied to an enabled Posture Policy.
3. Navigate to Work Centers >> Posture >> Policy Elements >> Requirements.
4. Verify that each requirement noted has a message in the "Message Shown to Agent User" box.

If a requirement that is used does not have a message, this is a finding.

Vulnerability Number

V-242585

Documentable

False

Rule Version

CSCO-NC-000110

Severity Override Guidance

Verify that each requirement used has a message to display.

1. Navigate to Work Centers >> Posture >> Posture Policy.
2. Make a note of each "Requirement" tied to an enabled Posture Policy.
3. Navigate to Work Centers >> Posture >> Policy Elements >> Requirements.
4. Verify that each requirement noted has a message in the "Message Shown to Agent User" box.

If a requirement that is used does not have a message, this is a finding.

Check Content Reference

M

Target Key

5383

Comments