STIGQter: STIG Summary: Unified Endpoint Management Server Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The UEM server must implement replay-resistant authentication mechanisms for network access to non-privileged accounts.

DISA Rule

SV-234364r617408_rule

Vulnerability Number

V-234364

Group Title

SRG-APP-000157

Rule Version

SRG-APP-000157-UEM-000091

Severity

CAT II

CCI(s)

• CCI-001942 - The information system implements replay-resistant authentication mechanisms for network access to non-privileged accounts.

Weight

10

Fix Recommendation

Configure the UEM server to implement replay-resistant authentication mechanisms for network access to non-privileged accounts.

Check Contents

Requirement is Not Applicable when UEM server is configured to use DoD Central Directory Service for administrator account authentication.

Verify the UEM server implements replay-resistant authentication mechanisms for network access to non-privileged accounts.

If the UEM server does not implement replay-resistant authentication mechanisms for network access to non-privileged accounts, this is a finding.

Vulnerability Number

V-234364

Documentable

False

Rule Version

SRG-APP-000157-UEM-000091

Severity Override Guidance

Requirement is Not Applicable when UEM server is configured to use DoD Central Directory Service for administrator account authentication.

Verify the UEM server implements replay-resistant authentication mechanisms for network access to non-privileged accounts.

If the UEM server does not implement replay-resistant authentication mechanisms for network access to non-privileged accounts, this is a finding.

Check Content Reference

M

Target Key

5269

Comments