Title

The SANs are not compliant with overall network security architecture, appropriate enclave, and data center security requirements in the Network Infrastructure STIG and the Enclave STIG (Cat II impact)

Discussion

Inconsistencies with the Network Infrastructure STIG, the Enclave STIG, and the SAN implementation can lead to the creation of vulnerabilities in the network or the enclave.

Check Content

The reviewer will interview the IAO/NSO to validate that SANs are compliant with overall network security architecture, appropriate enclave, and data center security requirements in the Network Infrastructure STIG and the Enclave STIG. NOTE: The intent of this check is to ensure that the other checklists were applied. If they are applied then, regardless of what the findings are, this is not a finding. The objective of this policy is met if the other checklists were applied and documented.

Fix Text

Perform a self assessment with the Network Infrastructure checklist and the Enclave checklist or schedule a formal review with FSO.

Additional Identifiers

Rule ID: SV-6730r1_rule

Vulnerability ID: V-6610

Group Title: Compliance with Network Infrastructure and Enclave

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.