STIGQter: STIG Summary: Samsung SDS EMM v1.5.x Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 20 Jan 2017:

The firewall protecting the Samsung SDS EMM server platform must be configured so that all allowed ports, protocols, and services are approved for DoD use (on the DoD Ports, Protocols, Services Management (PPSM) Category Assurance Levels (CAL) list).

DISA Rule

SV-87865r1_rule

Vulnerability Number

V-73213

Group Title

PP-MDM-991060

Rule Version

SEMM-15-100060

Severity

CAT II

CCI(s)

• CCI-000382 - The organization configures the information system to prohibit or restrict the use of organization-defined functions, ports, protocols, and/or services.

Weight

10

Fix Recommendation

Turn off any ports, protocols, and services on the MDM host-based firewall that are not on the DoD Ports, Protocols, Services Management (PPSM) Category Assurance Levels (CAL) list.

Check Contents

Ask the MDM administrator for a list of ports, protocols and services that have been configured on the host-based firewall. Verify all allowed ports, protocols, and services are included on the DoD PPSM CAL list.

If any allowed ports, protocols, and services on the MDM host-based firewall are not included on the DoD PPSM CAL list, this is a finding.

Vulnerability Number

V-73213

Documentable

False

Rule Version

SEMM-15-100060

Severity Override Guidance

Ask the MDM administrator for a list of ports, protocols and services that have been configured on the host-based firewall. Verify all allowed ports, protocols, and services are included on the DoD PPSM CAL list.

If any allowed ports, protocols, and services on the MDM host-based firewall are not included on the DoD PPSM CAL list, this is a finding.

Check Content Reference

M

Target Key

3175

Comments