STIGQter: STIG Summary: Voice Video Services Policy Security Technical Implementation Guide Version: 3 Release: 17 Benchmark Date: 25 Oct 2019:

Servers supporting the Voice Video and Unified Capability (UC) environment must be dedicated services, with unnecessary functions disabled or removed.

DISA Rule

SV-8733r2_rule

Vulnerability Number

V-8247

Group Title

VVoIP 1050

Rule Version

VVoIP 1050

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Configure the servers and devices supporting the Voice Video and UC environment without unnecessary functions and applications.

Dedicate servers in the Voice Video and UC core infrastructure to applications required for executing the primary function of the server or device, and those required for its support. Additionally, remove all unnecessary portions of the operating system such as sub-applications or files, and routines that are not required to support the telephony system.

Check Contents

Review the site documentation to confirm servers supporting the Voice Video and UC environment are dedicated services.

Ensure all unnecessary functions and applications are disabled or removed.

The Voice Video and UC core infrastructure includes (but is not limited to) session managers, voicemail and Unified Mail systems, media and signaling gateways, conference bridges, presence servers, and support services.

If the Voice Video and UC servers are not dedicated to applications supporting Voice Video operations, this is a finding.

If unnecessary applications for the server/device’s primary function are found, this is a finding.

Vulnerability Number

V-8247

Documentable

False

Rule Version

VVoIP 1050

Severity Override Guidance

Review the site documentation to confirm servers supporting the Voice Video and UC environment are dedicated services.

Ensure all unnecessary functions and applications are disabled or removed.

The Voice Video and UC core infrastructure includes (but is not limited to) session managers, voicemail and Unified Mail systems, media and signaling gateways, conference bridges, presence servers, and support services.

If the Voice Video and UC servers are not dedicated to applications supporting Voice Video operations, this is a finding.

If unnecessary applications for the server/device’s primary function are found, this is a finding.

Check Content Reference

M

Target Key

594

Comments