STIGQter: STIG Summary: IBM Hardware Management Console (HMC) STIG Version: 1 Release: 5 Benchmark Date: 20 Jan 2015:

Dial-out access from the Hardware Management Console Remote Support Facility (RSF) must be disabled for all classified systems.

DISA Rule

SV-30081r2_rule

Vulnerability Number

V-24398

Group Title

HMC0035

Rule Version

HMC0035

Severity

CAT I

CCI(s)

• CCI-001762 - The organization disables organization-defined functions, ports, protocols, and services within the information system deemed to be unnecessary and/or nonsecure.

Weight

10

Fix Recommendation

Have the Systems Administrator or Systems Programmer validate that dial-out access from the Hardware Management Console is not activated for any classified systems.
Note: This can be accomplished by going to the Customize Remote Service Panel on the Hardware Management Console and verifying that enable remote service is not enabled.

Check Contents

Have the Systems Administrator or Systems Programmer validate that dial-out access from the Hardware Management Console is not activated for any classified systems.

Note: This can be accomplished by going to the Customize Remote Service Panel on the Hardware Management Console and verifying that enable remote service is not enabled.

If this is a classified system and enable remote service is enabled, then this is a FINDING.

Vulnerability Number

V-24398

Documentable

False

Rule Version

HMC0035

Severity Override Guidance

Have the Systems Administrator or Systems Programmer validate that dial-out access from the Hardware Management Console is not activated for any classified systems.

Note: This can be accomplished by going to the Customize Remote Service Panel on the Hardware Management Console and verifying that enable remote service is not enabled.

If this is a classified system and enable remote service is enabled, then this is a FINDING.

Check Content Reference

M

Responsibility

Systems Programmer

Target Key

1891

Comments