Network devices that do not belong to administrative infrastructure cannot initiate connections with administrative infrastructure.
Topic
Administrative infrastructure
Applicable to
all
History
Dec 2023
Network devices that do not belong to administrative infrastructure cannot initiate connections with administrative infrastructure.
The existing control relating to only privileged operating environments being able to communicate with jump servers, along with the existing control relating to only jump servers being able to communicate with assets requiring remote administration, were replaced with a new control recommending network devices that do not belong to administrative infrastructure be prevented from initiating connections with administrative infrastructure. [ISM-1381, ISM-1388, ISM-1899]