CylanceON-PREM must be configured to send alerts via Simple Mail Transfer Protocol (SMTP).
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-272634 | CYLN-OP-000560 | SV-272634r1113494_rule | CCI-001294 | medium |
| Description | ||||
| Failure to notify personnel of failed tests introduces a risk to the system. Corrective action and the unsecure condition(s) will remain. Satisfies: SRG-APP-000275, SRG-APP-000279, SRG-APP-000940 | ||||
| STIG | Date | |||
| Arctic Wolf CylanceON-PREM Security Technical Implementation Guide | 2025-06-11 | |||
Related Frameworks
2 paths across 2 frameworks
Related Frameworks
NIST 800-531 mapping
SI-6
1.00
- DISA · V1R1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI1 mapping
CCI-001294
1.00
- DISA · V1R1 · disa_xccdf · related
Details
Check Text (C-272634r1113494_chk)
Verify SMTP Settings. Administrator privileges are required.
1. Log in to the admin console.
2. Navigate to CONFIGURATION >> Settings.
3. Find SMTP.
If SMTP is not enabled, this is a finding.
If SMTP settings are not populated and event type notifications not enabled, this is a finding.
Fix Text (F-76620r1113493_fix)
Configure SMTP Settings. Administrator privileges are required.
1. Log in to the admin console.
2. Navigate to CONFIGURATION >> Settings.
3. Find SMTP and click on the edit button.
4. Slide the button to enable.
5. Populate the Syslog/SIEM configuration.
6. Click the green check to save.