Title

The Unified Communications Endpoint must notify the user, upon successful logon (access), of the number of unsuccessful logon (access) attempts since the last successful logon (access). (Cat II impact)

Discussion

Users need to be aware of activity that occurs regarding their account. Providing users with information regarding the number of unsuccessful attempts that were made to login to their account allows the user to determine if any unauthorized activity has occurred and gives them an opportunity to notify administrators. This applies to network elements that have the concept of a user account and have the login function residing on the network element.

Check Content

Verify that the Unified Communications Endpoint notifies the user, upon successful logon (access), of the number of unsuccessful logon (access) attempts since the last successful logon (access). If the Unified Communications Endpoint does not notify the user, upon successful logon (access), of the number of unsuccessful logon (access) attempts since the last successful logon (access), this is a finding.

Fix Text

Configure the Unified Communications Endpoint to notify the user, upon successful logon (access), of the number of unsuccessful logon (access) attempts since the last successful logon (access).

Additional Identifiers

Rule ID: SRG-NET-000049-VVEP-00100_rule

Vulnerability ID: SRG-NET-000049-VVEP-00100

Group Title: SRG-NET-000049-VVEP-00100

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.