JUSX-DM-000001 - The Juniper SRX Services Gateway must limit the number of concurrent sessions to a maximum of 10 or less for remote access using SSH.

CAT|III

CCI|CCI-000054

Rule-ID|SV-223180r960735_rule

STIG-ID|JUSX-DM-000001

STIG-Legacy|SV-81039

STIG-Legacy|V-66549

Vuln-ID|V-223180

JUSX-DM-000007 - The Juniper SRX Services Gateway must automatically terminate a network administrator session after organization-defined conditions or trigger events requiring session disconnect.

CAT|II

CCI|CCI-000169

CCI|CCI-000366

Rule-ID|SV-229014r961863_rule

STIG-ID|JUSX-DM-000007

STIG-Legacy|SV-80947

STIG-Legacy|V-66457

Vuln-ID|V-229014

JUSX-DM-000015 - For local accounts created on the device, the Juniper SRX Services Gateway must automatically generate log records for account creation events.

CCI|CCI-000018

Rule-ID|SV-223181r960777_rule

STIG-ID|JUSX-DM-000015

STIG-Legacy|SV-80949

STIG-Legacy|V-66459

Vuln-ID|V-223181

JUSX-DM-000016 - For local accounts created on the device, the Juniper SRX Services Gateway must automatically generate log records for account modification events.

CCI|CCI-001403

Rule-ID|SV-223182r960780_rule

STIG-ID|JUSX-DM-000016

STIG-Legacy|SV-80951

STIG-Legacy|V-66461

Vuln-ID|V-223182

JUSX-DM-000017 - For local accounts created on the device, the Juniper SRX Services Gateway must automatically generate log records for account disabling events.

CCI|CCI-001404

Rule-ID|SV-223183r960783_rule

STIG-ID|JUSX-DM-000017

STIG-Legacy|SV-80953

STIG-Legacy|V-66463

Vuln-ID|V-223183

JUSX-DM-000018 - For local accounts created on the device, the Juniper SRX Services Gateway must automatically generate log records for account removal events.

CCI|CCI-001405

Rule-ID|SV-223184r960786_rule

STIG-ID|JUSX-DM-000018

STIG-Legacy|SV-80955

STIG-Legacy|V-66465

Vuln-ID|V-223184

JUSX-DM-000019 - For local accounts, the Juniper SRX Services Gateway must generate an alert message to the management console and generate a log event record that can be forwarded to the ISSO and designated system administrators when local accounts are created.

CCI|CCI-000171

Rule-ID|SV-229015r961863_rule

STIG-ID|JUSX-DM-000019

STIG-Legacy|SV-80933

STIG-Legacy|V-66443

Vuln-ID|V-229015

JUSX-DM-000020 - The Juniper SRX Services Gateway must generate an alert message to the management console and generate a log event record that can be forwarded to the ISSO and designated system administrators when the local accounts (i.e., the account of last resort or root account) are modified.

CCI|CCI-000139

Rule-ID|SV-229016r961863_rule

STIG-ID|JUSX-DM-000020

STIG-Legacy|SV-80935

STIG-Legacy|V-66445

Vuln-ID|V-229016

JUSX-DM-000021 - The Juniper SRX Services Gateway must generate an alert message to the management console and generate a log event record that can be forwarded to the ISSO and designated system administrators when accounts are disabled.

CCI|CCI-000140

Rule-ID|SV-229017r961863_rule

STIG-ID|JUSX-DM-000021

STIG-Legacy|SV-80957

STIG-Legacy|V-66467

Vuln-ID|V-229017

JUSX-DM-000022 - The Juniper SRX Services Gateway must generate alerts to the management console and generate a log record that can be forwarded to the ISSO and designated system administrators when the local accounts (i.e., the account of last resort or root account) are deleted.

CCI|CCI-001314

Rule-ID|SV-229018r961863_rule

STIG-ID|JUSX-DM-000022

STIG-Legacy|SV-80937

STIG-Legacy|V-66447

Vuln-ID|V-229018

JUSX-DM-000023 - The Juniper SRX Services Gateway must automatically generate a log event when accounts are enabled.

CCI|CCI-002130

Rule-ID|SV-223185r961290_rule

STIG-ID|JUSX-DM-000023

STIG-Legacy|SV-80959

STIG-Legacy|V-66469

Vuln-ID|V-223185

JUSX-DM-000024 - The Juniper SRX Services Gateway must generate an immediate alert message to the management console for account enabling actions.

CCI|CCI-001328

Rule-ID|SV-229019r961863_rule

STIG-ID|JUSX-DM-000024

STIG-Legacy|SV-80961

STIG-Legacy|V-66471

Vuln-ID|V-229019

JUSX-DM-000025 - The Juniper SRX Services Gateway must enforce the assigned privilege level for each administrator and authorizations for access to all commands by assigning a login class to all AAA-authenticated users.

CCI|CCI-000213

Rule-ID|SV-223186r960792_rule

STIG-ID|JUSX-DM-000025

STIG-Legacy|SV-80963

STIG-Legacy|V-66473

Vuln-ID|V-223186

JUSX-DM-000029 - The Juniper SRX Services Gateway must generate a log event when privileged commands are executed.

CCI|CCI-002234

Rule-ID|SV-223187r961362_rule

STIG-ID|JUSX-DM-000029

STIG-Legacy|SV-81041

STIG-Legacy|V-66551

Vuln-ID|V-223187

JUSX-DM-000030 - For local accounts created on the device, the Juniper SRX Services Gateway must enforce the limit of three consecutive invalid logon attempts by a user during a 15-minute time period.

CCI|CCI-000044

Rule-ID|SV-223188r1018645_rule

STIG-ID|JUSX-DM-000030

STIG-Legacy|SV-81043

STIG-Legacy|V-66553

Vuln-ID|V-223188

JUSX-DM-000032 - The Juniper SRX Services Gateway must display the Standard Mandatory DoD Notice and Consent Banner before granting access.

CCI|CCI-000048

Rule-ID|SV-223189r960843_rule

STIG-ID|JUSX-DM-000032

STIG-Legacy|SV-81045

STIG-Legacy|V-66555

Vuln-ID|V-223189

JUSX-DM-000039 - The Juniper SRX Services Gateway must allow only the information system security manager (ISSM) (or administrators/roles appointed by the ISSM) to select which auditable events are to be generated and forwarded to the syslog and/or local logs - or administrators/roles appointed by the ISSM to select which auditable events are to be generated and forwarded to the syslog and/or local logs.

CCI|CCI-000015

CCI|CCI-001684

Rule-ID|SV-229021r1015758_rule

STIG-ID|JUSX-DM-000039

STIG-Legacy|SV-81047

STIG-Legacy|V-66557

Vuln-ID|V-229021

JUSX-DM-000040 - The Juniper SRX Services Gateway must generate log records when successful attempts to configure the device and use commands occur.

CCI|CCI-000172

Rule-ID|SV-223191r960885_rule

STIG-ID|JUSX-DM-000040

STIG-Legacy|SV-81049

STIG-Legacy|V-66559

Vuln-ID|V-223191

JUSX-DM-000041 - The Juniper SRX Services Gateway must generate log records when changes are made to administrator privileges.

Rule-ID|SV-223192r961800_rule

STIG-ID|JUSX-DM-000041

STIG-Legacy|SV-81051

STIG-Legacy|V-66561

Vuln-ID|V-223192

JUSX-DM-000042 - The Juniper SRX Services Gateway must generate log records when administrator privileges are deleted.

Rule-ID|SV-223193r961812_rule

STIG-ID|JUSX-DM-000042

STIG-Legacy|SV-81053

STIG-Legacy|V-66563

Vuln-ID|V-223193

JUSX-DM-000043 - The Juniper SRX Services Gateway must generate log records when logon events occur.

Rule-ID|SV-223194r961824_rule

STIG-ID|JUSX-DM-000043

STIG-Legacy|SV-81055

STIG-Legacy|V-66565

Vuln-ID|V-223194

JUSX-DM-000044 - The Juniper SRX Services Gateway must generate log records when privileged commands are executed.

Rule-ID|SV-223195r961827_rule

STIG-ID|JUSX-DM-000044

STIG-Legacy|SV-81057

STIG-Legacy|V-66567

Vuln-ID|V-223195

JUSX-DM-000046 - The Juniper SRX Services Gateway must generate log records when concurrent logons from different workstations occur.

Rule-ID|SV-223196r961833_rule

STIG-ID|JUSX-DM-000046

STIG-Legacy|SV-81059

STIG-Legacy|V-66569

Vuln-ID|V-223196

JUSX-DM-000055 - The Juniper SRX Services Gateway must generate log records containing the full-text recording of privileged commands.

CCI|CCI-000135

Rule-ID|SV-223197r960909_rule

STIG-ID|JUSX-DM-000055

STIG-Legacy|SV-81061

STIG-Legacy|V-66571

Vuln-ID|V-223197

JUSX-DM-000056 - For local log files, the Juniper SRX Services Gateway must allocate log storage capacity in accordance with organization-defined log record storage requirements so that the log files do not grow to a size that causes operational issues.

CCI|CCI-001849

Rule-ID|SV-223198r961392_rule

STIG-ID|JUSX-DM-000056

STIG-Legacy|SV-80967

STIG-Legacy|V-66477

Vuln-ID|V-223198

JUSX-DM-000059 - The Juniper SRX Services Gateway must generate an immediate system alert message to the management console when a log processing failure is detected.

CCI|CCI-001858

Rule-ID|SV-223199r961401_rule

STIG-ID|JUSX-DM-000059

STIG-Legacy|SV-80969

STIG-Legacy|V-66479

Vuln-ID|V-223199

JUSX-DM-000060 - For local logging, the Juniper SRX Services Gateway must generate a message to the system management console when a log processing failure occurs.

CCI|CCI-001685

Rule-ID|SV-229022r1015759_rule

STIG-ID|JUSX-DM-000060

STIG-Legacy|SV-81063

STIG-Legacy|V-66573

Vuln-ID|V-229022

JUSX-DM-000061 - In the event that communications with the events server is lost, the Juniper SRX Services Gateway must continue to queue log records locally.

CCI|CCI-001686

Rule-ID|SV-229023r1015760_rule

STIG-ID|JUSX-DM-000061

STIG-Legacy|SV-80971

STIG-Legacy|V-66481

Vuln-ID|V-229023

JUSX-DM-000065 - The Juniper SRX Services Gateway must record time stamps for log records using Coordinated Universal Time (UTC).

Detections

Analytics

DISA Juniper SRX Services Gateway NDM v3r2

Warning! Audit Deprecated

Audit Details

File Details

Audit Changelog

Revision 1.1

Functional Update

Miscellaneous

Removed