Rule ID
SV-284582r1244871_rule
Version
V1R1
CCIs
Successful authentication must not automatically give an entity access to an asset or security boundary. The lack of authorization-based access control could result in the immediate compromise and unauthorized access to sensitive information. Configure a Host Enforcer policy in Ivanti IPS to enforce compliance checks on endpoints that connect to the network. This is typically done to ensure the endpoints meet specific security standards and are up to date with their operating systems and patches. The policy can be applied at the realm level (pre-authentication) or at the role level (post-authentication) to manage access based on compliance. Additionally, configure Host Checker policies to perform health and security checks on endpoints, including antivirus versions, OS versions, and patch checker.
If post admissions is not used, this is not applicable. In the Ivanti Policy Secure Web UI, navigate to Endpoint Policy >> Host Enforcer >> Host Enforcer Policies. If there are no Host Enforcer Policies created, this is a finding.
1. In the Ivanti Policy Secure Web UI, navigate to Endpoint Policy >> Host Enforcer >> Host Enforcer Policies. 2. Click "New Policy". 3. Type "Name" and "Description". 4. Specify "Resources". 5. Specify "Roles". 6. Specify "Actions" such as Allow/Deny, etc. 7. Click "Save Changes".