Multifunction Device and Network Printers STIG
Rules, Groups, and Values defined within the XCCDF Benchmark
-
A MFD or printer is not configured to restrict jobs to those from print spoolers.
If MFDs or printers are not restricted to accept print jobs only from print spoolers that authenticate the user and log the job, a denial of service can be created by the MFD or printer accepting o...Rule Medium Severity -
MFD Authorized Users Restrictions
Group -
Print spoolers are not configured to restrict access to authorized users and restrict users to managing their own individual jobs.
If unauthorized users are allowed access to the print spooler they can queue large print file creating a denial of service for other users. If users are not restricted to manipulating only files t...Rule Medium Severity -
MFD and Spooler Auditing
Group -
The devices and their spoolers do not have auditing enabled.
Without auditing the identification and prosecution of an individual that performs malicious actions is difficult if not impossible.Rule Medium Severity -
MFD/Printer Security Policy
Group -
MFD Level of Audit and Reviewing
Group -
MFD Classified Network
Group -
MFDs with print, copy, scan, or fax capabilities must be prohibited on classified networks without the approval of the DAA.
MFDs with print, copy, scan, or fax capabilities, if compromised, could lead to the compromise of classified data or the compromise of the network. The IAO will ensure MFDs with copy, scan, or fax...Rule High Severity -
MFD Clearing Disk Space Scan to Disk
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.