UCF STIG Viewer Logo

Configuration management applications must employ automated mechanisms to centrally respond to unauthorized changes to configuration settings.


Overview

Finding ID Version Rule ID IA Controls Severity
V-35385 SRG-APP-000138-MAPP-NA SV-46672r1_rule Medium
Description
Configuration settings are the configurable security-related parameters of information technology products that are part of the information system. Security-related parameters are those parameters impacting the security state of the system, including parameters related to meeting other security control requirements. Security-related parameters include: registry settings; account, file, and directory settings (i.e., permissions); and settings for services, ports, protocols, and remote connections. Responses to unauthorized changes to configuration settings can include: alerting designated organizational personnel, restoring mandatory/organization-defined configuration settings, or in the extreme case, halting affected information system processing. Centrally respond means to respond to unauthorized changes to settings have taken effect from a centralized location. In order to accommodate large scale environments, centralized solutions may also employ distributed systems used as configuration management proxies. This is allowable as long as these systems are centrally managed and controlled as part of the overall configuration management solution. Rationale for non-applicability: Configuration management applications are within the scope of the MDM SRG.
STIG Date
Mobile Application Security Requirements Guide 2013-01-04

Details

Check Text ( C-43746r1_chk )
This requirement is NA for the MAPP SRG.
Fix Text (F-39931r1_fix)
The requirement is NA. No fix is required.