Check: SRG-NET-000015-VVEP-00102
Unified Communications Endpoint SRG:
SRG-NET-000015-VVEP-00102
(in version v1 r0.1)
Title
The Unified Communications Endpoint must be configured to register with a Unified Communications Session Manager. (Cat I impact)
Discussion
For most VoIP systems, registration is the process of centrally recording the user ID, endpoint MAC address, service/policy profile with 2 stage authentication prior to authorizing the establishment of the session and user service. The event of successful registration creates the session record immediately. VC systems register using a similar process with a gatekeeper. Without enforcing registration, an adversary could impersonate a legitimate device on the Voice Video network.
Check Content
Verify the Unified Communications Endpoint registers with a Unified Communications Session Manager. If the Unified Communications Endpoint does not register with a Unified Communications Session Manager, this is a finding.
Fix Text
Configure the Unified Communications Endpoint to register with a Unified Communications Session Manager.
Additional Identifiers
Rule ID: SRG-NET-000015-VVEP-00102_rule
Vulnerability ID: SRG-NET-000015-VVEP-00102
Group Title: SRG-NET-000015-VVEP-00102
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-000213 |
Enforce approved authorizations for logical access to information and system resources in accordance with applicable access control policies. |
Controls
| Number | Title |
|---|---|
| AC-3 |
Access Enforcement |