STIGQter: STIG Summary: ForeScout CounterACT NDM Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 12 Sep 2017:

CounterACT appliances performing maintenance functions must restrict use of these functions to authorized personal only.

DISA Rule

SV-90907r1_rule

Vulnerability Number

V-76219

Group Title

SRG-APP-000408-NDM-000314

Rule Version

CACT-NM-000041

Severity

CAT I

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.
• CCI-002883 - The information system restricts the use of maintenance tools to authorized personnel only.

Weight

10

Fix Recommendation

Configure the access privileges to CounterACT to restrict use of maintenance functions to authorized personnel only.

1. Select Tools >> Options >> Console User Profiles.
2. Adjust or remove the unauthorized group or user profile.

Note: The RAFACS must also be inspected for unauthorized users.

Check Contents

Determine if the network device restricts the use of maintenance functions to authorized personnel only. View the list of users defined on the device.

Select Tools >> Options >> Console User Profiles.

If other personnel can use maintenance functions on the network device, this is a finding.

Vulnerability Number

V-76219

Documentable

False

Rule Version

CACT-NM-000041

Severity Override Guidance

Determine if the network device restricts the use of maintenance functions to authorized personnel only. View the list of users defined on the device.

Select Tools >> Options >> Console User Profiles.

If other personnel can use maintenance functions on the network device, this is a finding.

Check Content Reference

M

Target Key

3225

Comments