Ivanti Sentry 9.x NDM Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-APP-000177-NDM-000263
Group -
SRG-APP-000179-NDM-000265
Group -
Sentry must be configured to send log data to a central log server for the purpose of forwarding alerts to the administrators and the ISSO.
Without syslog enabled it will be difficult for an ISSO to correlate the users behavior and identify potential threats within the logs.Rule High Severity -
SRG-APP-000516-NDM-000351
Group -
SRG-APP-000190-NDM-000267
Group -
SRG-APP-000224-NDM-000270
Group -
Sentry must generate unique session identifiers using a FIPS 140-2 approved random number generator.
Sequentially generated session IDs can be easily guessed by an attacker. Employing the concept of randomness in the generation of unique session identifiers helps to protect against brute-force att...Rule Medium Severity -
SRG-APP-000360-NDM-000295
Group -
Sentry must generate an immediate real-time alert of all audit failure events requiring real-time alerts.
It is critical for the appropriate personnel to be aware if a system is at risk of failing to process audit logs as required. Without a real-time alert, security personnel may be unaware of an impe...Rule Low Severity -
SRG-APP-000373-NDM-000298
Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.