Symantec ProxySG must configure Web Management Console access restrictions to authorized IP address/ranges.

An XCCDF Rule

Description

<VulnDiscussion>It is important that administrative access (SSH, web) to an appliance using the account of last resort be able to be restricted to only the appropriate networks/subnets in order to reduce the likelihood of unauthorized access.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-104487r1_rule
Severity: High
References: CCI-000213
Updated: about 1 year ago

Configure console access using the account of last resort to specific networks/subnets.

1. Log on to the Web Management Console.
2. Click Configuration >> Authentication >> Console Access.
3. Click "New".
4. Enter the IP address and subnet mask for the desired network and click "OK".5. Repeat step 4 until all desired networks have been added.
6. Click "Apply".

Symantec ProxySG must configure Web Management Console access restrictions to authorized IP address/ranges.

Description

Remediation - Manual Procedure