STIGQter: STIG Summary: Layer 2 Switch Security Requirements Guide Version: 1 Release: 6 Benchmark Date: 24 Jan 2020:

The layer 2 switch must be configured to fail securely in the event of an operational failure.

DISA Rule

SV-76655r2_rule

Vulnerability Number

V-62165

Group Title

SRG-NET-000235

Rule Version

SRG-NET-000235-L2S-000031

Severity

CAT II

CCI(s)

• CCI-001126 - The information system fails securely in the event of an operational failure of a boundary protection device.

Weight

10

Fix Recommendation

Configure the layer 2 switch to fail to a secure state upon failure of initialization, shutdown, or abort actions.

Check Contents

Review the vendor documentation to determine if the layer 2 switch will fail to a secure state in the event that the system initialization fails, shutdown fails, or abort fails.

If the layer 2 switch does not fail to a secure state in the event that the system initialization fails, shutdown fails, or abort fails, this is a finding.

Vulnerability Number

V-62165

Documentable

False

Rule Version

SRG-NET-000235-L2S-000031

Severity Override Guidance

Review the vendor documentation to determine if the layer 2 switch will fail to a secure state in the event that the system initialization fails, shutdown fails, or abort fails.

If the layer 2 switch does not fail to a secure state in the event that the system initialization fails, shutdown fails, or abort fails, this is a finding.

Check Content Reference

M

Target Key

2917

Comments