CylanceON-PREM must disable all functions, ports, protocols and services not required.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-272638 | CYLN-OP-000815 | SV-272638r1113550_rule | Medium |
| Description |
| Unnecessary or unsecured ports, protocols, and services present many risks for attackers and may go undetected. |
| STIG | Date |
| Arctic Wolf CylanceON-PREM Security Technical Implementation Guide | 2025-06-11 |
Details
| Check Text (C-76719r1113548_chk) |
| Verify port configuration to external subordinate services such as syslog/SEIM, SMTP, etc. Administrator privileges are required. 1. Log in to the admin console. 2. Navigate to CONFIGURATION >> Settings. 3. Review settings. 4. Verify the ports used are accurate. If any ports are being used that are not required, this is a finding. |
| Fix Text (F-76624r1113549_fix) |
| Configure ports to external subordinate services such as syslog/SEIM, SMTP, etc. Administrator privileges are required. 1. Log in to the admin console. 2. Navigate to CONFIGURATION >> Settings. 3. Disable nonrequired features. 4. Ensure the ports used are accurate. 5. Check with subordinate systems administrators to verify and correct port settings as necessary. 6. Reboot the server. |