Title

The IDPS must be configured in accordance with the security configuration settings based on DoD security policy and technology-specific security best practices. (Cat II impact)

Discussion

Configuring the IDPS to implement organization-wide security implementation guides and security checklists ensures compliance with federal standards and establishes a common security baseline across DoD that reflects the most restrictive security posture consistent with operational requirements. Configuration settings are the set of parameters that can be changed that affect the security posture and/or functionality of the network element. Security-related parameters are those parameters impacting the security state of the network element, including the parameters required to satisfy other security control requirements. For the network element, security-related parameters include settings for communications traffic management configurations.

Check Content

Verify the IDPS is configured in accordance with the security configuration settings based on DoD security policy and technology-specific security best practices. If the IDPS is not configured in accordance with the security configuration settings based on DoD security policy and technology-specific security best practices, this is a finding.

Fix Text

Configure the IDPS to comply with the security configuration settings based on DoD security policy and technology-specific security best practices.

Additional Identifiers

Rule ID: SV-69583r1_rule

Vulnerability ID: V-55337

Group Title: SRG-NET-000512-IDPS-00194

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.