STIGQter: STIG Summary: VMW vRealize Automation 7.x vIDM Security Technical Implementation Guide Version: 1 Release: 1 Benchmark Date: 28 Sep 2018:

vIDM must be configured correctly for the site enterprise user management system.

DISA Rule

SV-100935r1_rule

Vulnerability Number

V-90285

Group Title

SRG-APP-000148-AS-000101

Rule Version

VRAU-VI-000195

Severity

CAT II

CCI(s)

• CCI-000764 - The information system uniquely identifies and authenticates organizational users (or processes acting on behalf of organizational users).

Weight

10

Fix Recommendation

Interview the ISSO. Obtain the correct configuration for the site's Directory services.

In a browser, log in with Tenant admin privileges, and navigate to the Administration page.

Select Directories Management >> Directories.

Click on the configured Directory to edit the configuration in accordance with the instructions provided by the ISSO.

Check Contents

Interview the ISSO. Obtain the correct configuration for the site's Directory services.

In a browser, log in with Tenant admin privileges and navigate to the Administration page.

Select Directories Management >> Directories.

Click on the configured Directory to review the configuration.

If the Directory service is not configured correctly, this is a finding.

Vulnerability Number

V-90285

Documentable

False

Rule Version

VRAU-VI-000195

Severity Override Guidance

Interview the ISSO. Obtain the correct configuration for the site's Directory services.

In a browser, log in with Tenant admin privileges and navigate to the Administration page.

Select Directories Management >> Directories.

Click on the configured Directory to review the configuration.

If the Directory service is not configured correctly, this is a finding.

Check Content Reference

M

Target Key

3451

Comments