Free DISA STIG and SRG Library | Vaulted

V-24398

Dial-out access from the Hardware Management Console Remote Support Facility (RSF) must be disabled for all classified systems.

Finding ID
HMC0035
Rule ID
SV-30081r1_rule
Severity
Cat I
CCE
(None)
Group Title
HMC0035
CCI
CCI-001762
Target Key
(None)
Documentable
No
Discussion

This feature will not be activated for any classified systems. Allowing dial-out access from the Hardware Management Console could impact the integrity of the environment by enabling the possible introduction of spyware or other malicious code.

Fix Text

Have the Systems Administrator or Systems Programmer validate that dial-out access from the Hardware Management Console is not activated for any classified systems. Note: This can be accomplished by going to the Customize Remote Service Panel on the Hardware Management Console and verifying that enable remote service is not enabled.

Check Content

Have the Systems Administrator or Systems Programmer validate that dial-out access from the Hardware Management Console is not activated for any classified systems. Note: This can be accomplished by going to the Customize Remote Service Panel on the Hardware Management Console and verifying that enable remote service is not enabled. If this is a classified system and enable remote service is enabled, then this is a FINDING.

Responsibility

System Administrator

IA Controls

EBRP-1, EBRU-1