STIGQter: STIG Summary: IBM DataPower ALG Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 25 Jan 2016:

The DataPower Gateway providing user access control intermediary services must provide the capability for authorized users to select a user session to capture or view.

DISA Rule

SV-79745r1_rule

Vulnerability Number

V-65255

Group Title

SRG-NET-000331-ALG-000041

Rule Version

WSDP-AG-000088

Severity

CAT II

CCI(s)

• CCI-001919 - The information system provides the capability for authorized users to select a user session to capture/record or view/hear.

Weight

10

Fix Recommendation

Search Bar “Log Target” >> Log target >> Event Subscription tab >> Add >> Event Category “audit” >> Minimum Event Priority event priority level >> Apply >> Apply >> Save Configuration.

If the only log target is “default-log”: Type “Log Target” in the Search field >> Log target >> Main tab >> Target Type “syslog” >> syslog Facility facility >> Local Identifier identifier >> Remote Host hostname.

Check Contents

Search Bar “Log Target” >> Log target >> Event Subscription tab.

If “audit” is not listed under Event Category, this is a finding. (Note: If the only Log Target available is “default-log”, this is a finding.)

Vulnerability Number

V-65255

Documentable

False

Rule Version

WSDP-AG-000088

Severity Override Guidance

Search Bar “Log Target” >> Log target >> Event Subscription tab.

If “audit” is not listed under Event Category, this is a finding. (Note: If the only Log Target available is “default-log”, this is a finding.)

Check Content Reference

M

Target Key

2859

Comments