STIGQter: STIG Summary: Unified Endpoint Management Server Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The UEM server must notify system administrator and Information System Security Officer (ISSO) of account enabling actions.

DISA Rule

SV-234466r617399_rule

Vulnerability Number

V-234466

Group Title

SRG-APP-000320

Rule Version

SRG-APP-000320-UEM-000193

Severity

CAT II

CCI(s)

• CCI-002132 - The information system notifies organization-defined personnel or roles for account enabling actions.

Weight

10

Fix Recommendation

Configure the UEM server to notify system administrator and the ISSO of account enabling actions.

Check Contents

Requirement is Not Applicable when the UEM server is configured to use DoD Central Directory Service for administrator account authentication.

Verify the UEM server notifies the system administrator and the ISSO of account enabling actions.

If the UEM server does not notify the system administrator and the ISSO of account enabling actions, this is a finding.

Vulnerability Number

V-234466

Documentable

False

Rule Version

SRG-APP-000320-UEM-000193

Severity Override Guidance

Requirement is Not Applicable when the UEM server is configured to use DoD Central Directory Service for administrator account authentication.

Verify the UEM server notifies the system administrator and the ISSO of account enabling actions.

If the UEM server does not notify the system administrator and the ISSO of account enabling actions, this is a finding.

Check Content Reference

M

Target Key

5269

Comments