Title

The Unified Communications Endpoint must be configured to dynamically implement configuration file changes. (Cat II impact)

Discussion

Configuration management includes the management of security features and assurances through control of changes made to device hardware, software, and firmware throughout the life cycle of a product. Secure configuration management relies on performance and functional attributes of products to determine the appropriate security features and assurances used to measure a system configuration state. When configuration changes are made, it is critical for those changes to be implemented by the Unified Communications Endpoint as quickly as possible. This ensures that Unified Communications Endpoints communicate using the correct address books, session managers, gateways, and border elements.

Check Content

Verify the Unified Communications Endpoint dynamically implements configuration file changes. If the Unified Communications Endpoint does not dynamically implement configuration file changes, this is a finding.

Fix Text

Configure the Unified Communications Endpoint to dynamically implement configuration file changes.

Additional Identifiers

Rule ID: SRG-NET-000512-VVEP-00102_rule

Vulnerability ID: SRG-NET-000512-VVEP-00102

Group Title: SRG-NET-000512-VVEP-00102

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.