Rule ID
SV-234353r1212982_rule
Version
V2R5
CCIs
All ports, protocols, and services used on DoW networks must be approved and registered via the DoW PPSM process. This is to ensure a risk assessment has been completed before a new port, protocol, or service is configured on a DoW network and has been approved by proper DoW authorities. Otherwise, the new port, protocol, or service could cause a vulnerability to the DoW network, which could be exploited by an adversary. Satisfies:FMT_SMR.1.1/SERVER_CONF_SERVER b
Verify the firewall protecting the UEM server platform is configured so that only DoW-approved ports, protocols, and services are enabled. (Refer to the DoW PPSM CAL list for DoW-approved ports, protocols, and services). If the firewall protecting the UEM server platform is not configured so that only DoW-approved ports, protocols, and services are enabled, this is a finding.
Configure the firewall protecting the UEM server platform so that only DoW-approved ports, protocols, and services are enabled. (Refer to the DoW PPSM CAL list for DoW-approved ports, protocols, and services).