Check: SYMP-NM-000030
Symantec ProxySG NDM STIG:
SYMP-NM-000030
(in versions v1 r2 through v1 r1)
Title
Symantec ProxySG must configure Web Management Console access restrictions to authorized IP address/ranges. (Cat I impact)
Discussion
It is important that administrative access (SSH, web) to an appliance using the account of last resort be able to be restricted to only the appropriate networks/subnets in order to reduce the likelihood of unauthorized access.
Check Content
Verify console access using the account of last resort has been restricted to specific networks/subnets. 1. Log on to the Web Management Console. 2. Click >> Configuration >> Authentication >> Console Access. 3. Confirm that the correct networks/subnets are specified in the list. If there are no entries in the list, this is a finding.
Fix Text
Configure console access using the account of last resort to specific networks/subnets. 1. Log on to the Web Management Console. 2. Click Configuration >> Authentication >> Console Access. 3. Click "New". 4. Enter the IP address and subnet mask for the desired network and click "OK". 5. Repeat step 4 until all desired networks have been added. 6. Click "Apply".
Additional Identifiers
Rule ID: SV-104487r1_rule
Vulnerability ID: V-94657
Group Title: SRG-APP-000033-NDM-000212
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-000213 |
Enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies. |
Controls
| Number | Title |
|---|---|
| AC-3 |
Access Enforcement |