The application server must employ automated mechanisms to integrate intrusion detection mechanisms into access control mechanisms.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-278964 | SRG-APP-001055-AS-000327 | SV-278964r1137603_rule | CCI-004969 | medium |
| Description | ||||
| Using automated tools and mechanisms to integrate intrusion detection tools and mechanisms into access mechanisms facilitates a rapid response to attacks by enabling the reconfiguration of mechanisms in support of attack isolation and elimination. This requirement also applies to Zero Trust initiatives. | ||||
| STIG | Date | |||
| Application Server Security Requirements Guide | 2025-09-10 | |||
Details
Check Text (C-278964r1137603_chk)
Verify the application server is configured to employ automated mechanisms to integrate intrusion detection mechanisms into access control mechanisms.
If the application server does not employ automated mechanisms to integrate intrusion detection mechanisms into access control mechanisms, this is a finding.
Fix Text (F-83417r1137602_fix)
Configure the application server to employ automated mechanisms to integrate intrusion detection mechanisms into access control mechanisms.