STIGQter: STIG Summary: Riverbed SteelHead CX v8 NDM Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 25 Oct 2019:

Riverbed Optimization System (RiOS) must generate a log event for the enforcement actions used to restrict access associated with changes to the device.

DISA Rule

SV-77429r1_rule

Vulnerability Number

V-62939

Group Title

SRG-APP-000381-NDM-000305

Rule Version

RICX-DM-000085

Severity

CAT II

CCI(s)

• CCI-001814 - The Information system supports auditing of the enforcement actions.

Weight

10

Fix Recommendation

Configure RiOS to audit the enforcement actions used to restrict access associated with changes to the device.

Navigate to the device Management Console
Navigate to Configure >> System Settings >> Logging

Set "Minimum Severity" to "info"
Click "Apply"
Navigate to the top of the screen and click "Save"

Check Contents

Verify that RiOS is configured to audit the enforcement actions used to restrict access associated with changes to the device.

Navigate to the device Management Console
Navigate to Configure >> System Settings >> Logging

Verify that "Minimum Severity" is set to "info"

If the minimum severity is not set to "info", this is a finding.

Vulnerability Number

V-62939

Documentable

False

Rule Version

RICX-DM-000085

Severity Override Guidance

Verify that RiOS is configured to audit the enforcement actions used to restrict access associated with changes to the device.

Navigate to the device Management Console
Navigate to Configure >> System Settings >> Logging

Verify that "Minimum Severity" is set to "info"

If the minimum severity is not set to "info", this is a finding.

Check Content Reference

M

Target Key

2931

Comments