Details

By immediately displaying an alarm message, identifying the potential security violation and making it accessible with the audit record contents associated with the event(s) that generated the alarm provides the administration staff prompt alert messages, regardless if the person is logged into the system.

NOTE: This check requires a manual review. Determine what alerts and notification actions are required for your organization.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Configure the firewall to immediately notify authorized personnel of critical alerts.

Supportive Information

The following resource is also helpful.

• https://iasecontent.disa.mil/stigs/zip/U_Network_Firewall_V8R25_STIG.zip

This control applies to the following type of system Cisco.

References

• CAT|II
• Rule-ID|SV-15274r2_rule
• STIG-ID|NET0391
• Vuln-ID|V-14648

Source

• Tenable.com/audits