Forescout Network Device Management Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Forescout must prevent the installation of patches, service packs, plug-ins, or modules without verification the update has been digitally signed using a certificate that is recognized and approved by the organization.
Changes to any software components can have significant effects on the overall security of the network device. Verifying software components have been digitally signed using a certificate that is r...Rule Low Severity -
SRG-APP-000133-NDM-000244
Group -
Forescout must limit privileges to change the modules and OSs resident within software libraries.
Changes to any software components of the network device can have significant effects on the overall security of the network. Therefore, only qualified and authorized individuals must be allowed ad...Rule Medium Severity -
SRG-APP-000516-NDM-000335
Group -
SRG-APP-000516-NDM-000336
Group -
Forescout must be configured to use an authentication server for the purpose of authenticating users prior to granting administrative access.
Centralized management of authentication settings increases the security of remote and nonlocal access methods. This control is particularly important protection against the insider threat. With ro...Rule Medium Severity -
SRG-APP-000516-NDM-000351
Group -
Forescout must be running an operating system release that is currently supported by the vendor.
Network devices running an unsupported operating system lack current security fixes required to mitigate the risks associated with recent vulnerabilities. In Oct 2021, there is plan to make Versio...Rule Medium Severity -
SRG-APP-000329-NDM-000287
Group -
SRG-APP-000516-NDM-000334
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.