STIGQter: STIG Summary: Test and Development Zone B Security Technical Implementation Guide Version: 1 Release: 5 Benchmark Date: 26 Oct 2018:

Ports, protocols, and services visible to DoD operational networks or ISPs must follow DoDI 8551.1 policy.

DISA Rule

SV-51487r1_rule

Vulnerability Number

V-39629

Group Title

ENTD0170 - PPS does not following the DoDI 8551.1.

Rule Version

ENTD0170

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure all ports, protocols, and services visible to DoD-managed components as described in the DoDI 8551.1 PPSM policy.

Check Contents

Review the latest version of the PPS CAL for those ports, protocols, and services visible to DoD-managed components. If the organization is using ports, protocols, or services deemed not acceptable by the PPS CAL or requiring Authorization Official approval without proper documentation, this is a finding.

Vulnerability Number

V-39629

Documentable

False

Rule Version

ENTD0170

Severity Override Guidance

Review the latest version of the PPS CAL for those ports, protocols, and services visible to DoD-managed components. If the organization is using ports, protocols, or services deemed not acceptable by the PPS CAL or requiring Authorization Official approval without proper documentation, this is a finding.

Check Content Reference

M

Target Key

1132

Comments