When devices fail the policy assessment, Forescout must create a record with sufficient detail suitable for forwarding to a remediation server for automated remediation or sending to the user for manual remediation. This is required for compliance with C2C Step 3.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-233317 | FORE-NC-000090 | SV-233317r811383_rule | CCI-000213 | medium |
| Description | ||||
| Notifications sent to the user and/or network administrator informing them of remediation requirements will ensure that action is taken. | ||||
| STIG | Date | |||
| Forescout Network Access Control Security Technical Implementation Guide | 2025-06-12 | |||
Details
Check Text (C-233317r811383_chk)
If DoD is not at C2C Step 3 or higher, this is not a finding.
Verify Forescout sends user and/or admin notification of remediation requirements, whether manual or automated.
If the NAC does not flag for future manual or automated remediation, devices failing policy assessment that are not automatically remediated either before or during the remote access session, this a finding.
Fix Text (F-36477r605655_fix)
Log on to the Forescout UI.
1. Within the Policy tab, locate the Compliance policies.
2. Within the policy Sub-Rule, ensure all policies that indicate remediation have been configured to notify the user and/or network administrator of required action.