STIGQter: STIG Summary: IBM DataPower Network Device Management Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 24 Oct 2017:

The DataPower Gateway must terminate all network connections associated with a device management session at the end of the session, or the session must be terminated after 10 minutes of inactivity except to fulfill documented and validated mission requirements.

DISA Rule

SV-79597r1_rule

Vulnerability Number

V-65107

Group Title

SRG-APP-000190-NDM-000267

Rule Version

WSDP-NM-000069

Severity

CAT I

CCI(s)

• CCI-001133 - The information system terminates the network connection associated with a communications session at the end of the session or after an organization-defined time period of inactivity.

Weight

10

Fix Recommendation

Using the DataPower WebGUI:
In the search field, enter Web Management,
From the search results, click Web Management Service,
In the Idle timeout field, enter 600 (the number of seconds after which the appliance closes the connection).

Check Contents

Using the DataPower WebGUI:
In the search field, enter Web Management,
From the search results, click Web Management Service,
In the Idle timeout field, check to ensure that the value entered in no greater than 600 (the number of seconds after which the appliance closes the connection).
If the number is greater than 600, this is a finding.

Vulnerability Number

V-65107

Documentable

False

Rule Version

WSDP-NM-000069

Severity Override Guidance

Using the DataPower WebGUI:
In the search field, enter Web Management,
From the search results, click Web Management Service,
In the Idle timeout field, check to ensure that the value entered in no greater than 600 (the number of seconds after which the appliance closes the connection).
If the number is greater than 600, this is a finding.

Check Content Reference

M

Target Key

2861

Comments