The DataPower Gateway providing content filtering must generate a log record when unauthorized network services are detected.

An XCCDF Rule

Details
Profiles

Description

Unauthorized or unapproved network services lack organizational verification or validation and therefore may be unreliable or serve as malicious rogues for valid services. Examples of network services include service-oriented architectures (SOAs), cloud-based services (e.g., infrastructure as a service, platform as a service, or software as a service), cross-domain, Voice Over Internet Protocol, Instant Messaging, auto-execute, and file sharing.

ID: SV-79775r1_rule
Version: WSDP-AG-000109
Severity: Medium
References: CCI-002684
Updated: 15 days ago

Remediation Templates

Using the WebGUI, go to Network >> Management >> Web Management Service. Check the "WS-Management endpoint" checkbox. Configure an IP and port for the WS-Management endpoint to connect to.

The DataPower Gateway providing content filtering must generate a log record when unauthorized network services are detected.

Description

Remediation Templates

A Manual Procedure