STIGhubSTIGhub
STIGsSearchCompareAbout

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • VPAT
  • DISA STIG Library
STIGs updated 2 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Application Layer Gateway Security Requirements Guide

V-204993

CAT II (Medium)

The ALG providing user access control intermediary services must provide the capability for authorized users to select a user session to capture or view.

Rule ID

SV-204993r1015266_rule

STIG

Application Layer Gateway Security Requirements Guide

Version

V2R3

CCIs

CCI-001919

Discussion

Without the capability to select a user session to capture or view, investigations into suspicious or harmful events would be hampered by the volume of information captured. The intent of this requirement is to ensure the capability to select specific sessions to capture is available in order to support general auditing/incident investigation, or to validate suspected misuse by a specific user. Examples of session events that may be captured include, port mirroring, tracking websites visited, and recording information and/or file transfers.

Check Content

If the ALG does not provide user access control intermediary services, this is not applicable.

Verify the ALG provides the capability for authorized users to select a user session to capture or view.

If the ALG does not provide the capability for authorized users to select a user session to capture or view, this is a finding.

Fix Text

If user access control intermediary services are provided, configure the ALG to provide the capability for authorized users to select a user session to capture or view.