CylanceON-PREM must disable all functions, ports, protocols and services not required.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-272638 | CYLN-OP-000815 | SV-272638r1113550_rule | CCI-001762 | medium |
| Description | ||||
| Unnecessary or unsecured ports, protocols, and services present many risks for attackers and may go undetected. | ||||
| STIG | Date | |||
| Arctic Wolf CylanceON-PREM Security Technical Implementation Guide | 2025-06-11 | |||
Related Frameworks
3 paths across 3 frameworks
Related Frameworks
NIST 800-531 mapping
CM-7(1)
1.00
- DISA · V1R1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
NIST 800-1711 mapping
3.4.7
1.00
- DISA · V1R1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI1 mapping
CCI-001762
1.00
- DISA · V1R1 · disa_xccdf · related
Details
Check Text (C-272638r1113550_chk)
Verify port configuration to external subordinate services such as syslog/SEIM, SMTP, etc. Administrator privileges are required.
1. Log in to the admin console.
2. Navigate to CONFIGURATION >> Settings.
3. Review settings.
4. Verify the ports used are accurate.
If any ports are being used that are not required, this is a finding.
Fix Text (F-76624r1113549_fix)
Configure ports to external subordinate services such as syslog/SEIM, SMTP, etc. Administrator privileges are required.
1. Log in to the admin console.
2. Navigate to CONFIGURATION >> Settings.
3. Disable nonrequired features.
4. Ensure the ports used are accurate.
5. Check with subordinate systems administrators to verify and correct port settings as necessary.
6. Reboot the server.