The Palo Alto Networks security platform must automatically update malicious code protection mechanisms.

An XCCDF Rule

Description

Remote access is access to DOD nonpublic information systems by an authorized user (or an information system) communicating through an external, non-organization-controlled network. Remote access methods include broadband and wireless connections. Remote access methods include, for example, proxied remote encrypted traffic (e.g., TLS gateways, web content filters, and webmail proxies).

ID: SV-228851r1018773_rule
Version: PANW-AG-000065
Severity: Medium
References: CCI-001247 CCI-004964
Updated: about 2 months ago

Remediation Templates

Go to Device >> Dynamic Updates; select "Check Now" at the bottom of the page to retrieve the latest signatures.
To schedule automatic signature updates. Note: The steps provided below do not account for local change management policies.
Go to Device >> Dynamic Updates; select the text to the right of Schedule.
In the "Applications and Threat Updates Schedule" window; complete the required information.
In the "Recurrence" field, select Daily.
In the "Time" field, enter the time at which you want the device to check for updates.For the Action, select "Download and Install".
Select "OK".
Commit changes by selecting "Commit" in the upper-right corner of the screen. Select "OK" when the confirmation dialog appears.

If using Dynamic Updates is not possible due to mission requirements, implement a manual process.

The Palo Alto Networks security platform must automatically update malicious code protection mechanisms.

Description

Remediation Templates

A Manual Procedure