Check: NET1640
WMAN Access Point STIG (STIG):
NET1640
(in versions v6 r13 through v6 r11)
Title
Network devices must log all attempts to establish a management connection for administrative access. (Cat III impact)
Discussion
Audit logs are necessary to provide a trail of evidence in case the network is compromised. Without an audit trail that provides a when, where, who and how set of information, repeat offenders could continue attacks against the network indefinitely. With this information, the network administrator can devise ways to block the attack and possibly identify and prosecute the attacker.
Check Content
Review the configuration to verify all attempts to access the device via management connection are logged. If management connection attempts are not logged, this is a finding.
Fix Text
Configure the device to log all access attempts to the device to establish a management connection for administrative access.
Additional Identifiers
Rule ID: SV-3070r4_rule
Vulnerability ID: V-3070
Group Title: Management connections must be logged.
Expert Comments
CCIs
Number | Definition |
---|---|
No CCIs are assigned to this check |
Controls
Number | Title |
---|---|
No controls are assigned to this check |