Check: SRG-NET-000113-VVEP-00027
Unified Communications Endpoint SRG:
SRG-NET-000113-VVEP-00027
(in version v1 r0.1)
Title
The Unified Communications Endpoint must be configured to provide session (call detail) record generation capability. (Cat II impact)
Discussion
Session records are commonly produced by session management and border elements. Many Unified Communications Endpoints are not capable of providing session records and instead rely on session management and border elements. Unified Communications Endpoints capable of producing session records provide supplemental confirmation of monitored events. Unified Communications Endpoints that communicate beyond these defined environments must generate session records. Session records for Voice Video systems are generally handled in a similar fashion to audit records for other systems and are used for billing, usage analysis, and record support for actions taken. Detailed records are typically produced by the session manager but can be augmented by nontelephone endpoint records.
Check Content
Verify the Unified Communications Endpoint provides session record generation capability. If the Unified Communications Endpoint does not provide session record generation capability, this is a finding.
Fix Text
Configure the Unified Communications Endpoint to provide session record generation capability.
Additional Identifiers
Rule ID: SRG-NET-000113-VVEP-00027_rule
Vulnerability ID: SRG-NET-000113-VVEP-00027
Group Title: SRG-NET-000113-VVEP-00027
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-000169 |
Provide audit record generation capability for the event types the system is capable of auditing as defined in AU-2 a on organization-defined information system components. |
Controls
| Number | Title |
|---|---|
| AU-12 |
Audit Generation |