Title

(U) The Host Intrusion Prevention System (HIPS) Admin password for the User Interface (UI) has been changed from the default. (Cat I impact)

Discussion

Check Content

(U) This check needs to be completed for every active policy that controls ePO agents. Upon completion of the check, H36120, ensure that the known password is not the default. (The password does not need to be divulged during the review – an interview question of the SA to validate that it is not the default is sufficient.) If the default is being used, this is a finding.

Fix Text

(U) From the ePO server console, select the applicable policy to be checked for HIPS. Select the Client UI. From the Advanced Options tab, change the password from the default.

Additional Identifiers

Rule ID: SV-15151r1_rule

Vulnerability ID: V-14533

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.