STIGQter: STIG Summary: ISEC7 Sphere Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:

ISEC7 EMM Suite must disable or delete local account created during application installation and configuration.

DISA Rule

SV-224767r505933_rule

Vulnerability Number

V-224767

Group Title

SRG-APP-000148

Rule Version

ISEC-06-000660

Severity

CAT I

CCI(s)

CCI-000764 - The information system uniquely identifies and authenticates organizational users (or processes acting on behalf of organizational users).

Weight

Fix Recommendation

Log in to the ISEC7 EMM Suite console.
Navigate to Administration >> Configuration >> Account Management >> Users.
Select Edit next to the local account Admin.
Check Login disabled for the account.
Click Save.

Check Contents

Log in to the ISEC7 EMM Suite console.
Navigate to Administration >> Configuration >> Account Management >> Users.
Select Edit next to the local account Admin.
Verify Login disabled has been selected.

If Login disabled has not been selected, this is a finding.

Vulnerability Number

V-224767

Documentable

False

Rule Version

ISEC-06-000660

Severity Override Guidance

Check Content Reference

Target Key

4200

ISEC7 EMM Suite must disable or delete local account created during application installation and configuration.

DISA Rule

Vulnerability Number

Group Title

Rule Version

Severity

CCI(s)

Weight

Fix Recommendation

Check Contents

Vulnerability Number

Documentable

Rule Version

Severity Override Guidance

Check Content Reference

Target Key

Comments