Network management traffic can only originate from administrative infrastructure.
Topic
Administrative infrastructure
Applicable to
all
History
Priority
should
Mar 2022
Network management traffic can only originate from administrative infrastructure.
The security of administrative activities can be improved by segregating administrative infrastructure from an organisation’s wider network. In doing so, the use of a jump server (also known as a jump host or jump box) can be an effective way of simplifying and securing administrative activities. Furthermore, using separate jump servers for the administration of critical servers, high-value servers and regular servers can further assist in protecting these assets.
Oct 2019
Management traffic is only allowed to originate from network zones that are used to administer systems and applications.
Security control 1474 was merged with security control 1386.
Sep 2019
Management traffic is only allowed to originate from network zones that are used to administer systems and applications.
2015
Agencies should only allow management traffic to originate from network zones that are usedto administer systems and applications.