← Back to Intrusion Detection and Prevention Systems Security Requirements Guide

V-206923

CAT II (Medium)

The IDPS must be configured in accordance with the security configuration settings based on DoD security policy and technology-specific security best practices.

Rule ID

SV-206923r385561_rule

STIG

Intrusion Detection and Prevention Systems Security Requirements Guide

Version

V3R4

CCIs

CCI-000366

Discussion

Configuring the IDPS to implement organization-wide security implementation guides and security checklists ensures compliance with federal standards and establishes a common security baseline across DoD that reflects the most restrictive security posture consistent with operational requirements. Configuration settings are the set of parameters that can be changed that affect the security posture and/or functionality of the network element. Security-related parameters are those parameters impacting the security state of the network element, including the parameters required to satisfy other security control requirements. For the network element, security-related parameters include settings for communications traffic management configurations.

Check Content

Verify the IDPS is configured in accordance with the security configuration settings based on DoD security policy and technology-specific security best practices.

If the IDPS is not configured in accordance with the security configuration settings based on DoD security policy and technology-specific security best practices, this is a finding.

Fix Text

Configure the IDPS to comply with the security configuration settings based on DoD security policy and technology-specific security best practices.