Check: SRG-NET-000015-VVEP-00019
Voice Video Endpoint SRG:
SRG-NET-000015-VVEP-00019
(in versions v2 r2 through v1 r4)
Title
The Voice Video Endpoint must dynamically implement configuration file changes. (Cat I impact)
Discussion
Configuration management includes the management of security features and assurances through control of changes made to device hardware, software, and firmware throughout the life cycle of a product. Secure configuration management relies on performance and functional attributes of products to determine the appropriate security features and assurances used to measure a system configuration state. When configuration changes are made, it is critical for those changes to be implemented by the Voice Video Endpoint as quickly as possible. This ensures that Voice Video Endpoints communicate using the correct address books, session managers, gateways, and border elements.
Check Content
Verify the Voice Video Endpoint dynamically implements configuration file changes. If the Voice Video Endpoint does not dynamically implement configuration file changes, this is a finding.
Fix Text
Configure the Voice Video Endpoint to dynamically implement configuration file changes.
Additional Identifiers
Rule ID: SV-206747r604140_rule
Vulnerability ID: V-206747
Group Title: SRG-NET-000015
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-000213 |
The information system enforces approved authorizations for logical access to information and system resources in accordance with applicable access control policies. |
Controls
| Number | Title |
|---|---|
| AC-3 |
Access Enforcement |