STIGQter: STIG Summary: Unified Endpoint Management Server Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The UEM server must use a FIPS-validated cryptographic module to generate cryptographic hashes.

DISA Rule

SV-234664r617355_rule

Vulnerability Number

V-234664

Group Title

SRG-APP-000514

Rule Version

SRG-APP-000514-UEM-000389

Severity

CAT I

CCI(s)

• CCI-002450 - The information system implements organization-defined cryptographic uses and type of cryptography required for each use in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.

Weight

10

Fix Recommendation

Configure the UEM server to use a FIPS-validated cryptographic module to generate cryptographic hashes.

Check Contents

Verify the UEM server uses a FIPS-validated cryptographic module to generate cryptographic hashes.

If the UEM server does not use a FIPS-validated cryptographic module to generate cryptographic hashes, this is a finding.

Vulnerability Number

V-234664

Documentable

False

Rule Version

SRG-APP-000514-UEM-000389

Severity Override Guidance

Verify the UEM server uses a FIPS-validated cryptographic module to generate cryptographic hashes.

If the UEM server does not use a FIPS-validated cryptographic module to generate cryptographic hashes, this is a finding.

Check Content Reference

M

Target Key

5269

Comments