STIGQter: STIG Summary: Unified Endpoint Management Server Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The UEM server must be configured to implement FIPS 140-2 mode for all server and agent encryption.

DISA Rule

SV-234668r617355_rule

Vulnerability Number

V-234668

Group Title

SRG-APP-000555

Rule Version

SRG-APP-000555-UEM-000393

Severity

CAT I

CCI(s)

• CCI-002450 - The information system implements organization-defined cryptographic uses and type of cryptography required for each use in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.

Weight

10

Fix Recommendation

Configure the UEM server to implement FIPS 140-2 mode for all server and agent encryption.

Check Contents

Verify FIPS 140-2 mode has been implemented on the UEM server for all server and agent encryption.

If FIPS 140-2 mode has not been implemented on the UEM server for all server and agent encryption, this is a finding.

Vulnerability Number

V-234668

Documentable

False

Rule Version

SRG-APP-000555-UEM-000393

Severity Override Guidance

Verify FIPS 140-2 mode has been implemented on the UEM server for all server and agent encryption.

If FIPS 140-2 mode has not been implemented on the UEM server for all server and agent encryption, this is a finding.

Check Content Reference

M

Target Key

5269

Comments