Title

Prior to installing SAN components (servers, switches, and management stations) onto the DOD network infrastructure, components are not configured to meet the applicable STIG requirements. (Cat II impact)

Discussion

Many SAN components (servers, switches, management stations) have security requirements from other STIGs. It will be verified that all requirement are complied with. The IAO/NSO will ensure that prior to installing SAN components (servers, switches, and management stations) onto the DOD network infrastructure, components are configured to meet the applicable STIG requirements.

Check Content

The reviewer will interview the IAO/NSO and view VMS to verify that prior to installing SAN components (servers, switches, and management stations) onto the DOD network infrastructure, components are configured to meet the applicable STIG requirements.

Fix Text

Perform a self assessment using the applicable checklists or scripts on any component device that has not been reviewed or request a formal review from FSO.

Additional Identifiers

Rule ID: SV-6739r1_rule

Vulnerability ID: V-6619

Group Title: Component Compliance with applicable STIG

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.