STIGQter STIGQter: STIG Summary:

Citrix XenDesktop 7.x License Server Security Technical Implementation Guide

Version: 1

Release: 3 Benchmark Date: 24 Jan 2020

SV-96127r1_ruleXenDesktop License Server must implement DoD-approved encryption to protect the confidentiality of remote access sessions.
SV-96129r3_ruleXenDesktop License Server must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited.
SV-96131r1_ruleXenDesktop License Server must protect the authenticity of communications sessions.
SV-96133r1_ruleXenDesktop License Server must prohibit the use of cached authenticators after an organization-defined time period.
SV-96135r1_ruleXenDesktop License Server must protect the confidentiality and integrity of transmitted information.
SV-96137r1_ruleXenDesktop License Server must implement cryptographic mechanisms to prevent unauthorized disclosure of information and/or detect changes to information during transmission unless otherwise protected by alternative physical safeguards, such as, at a minimum, a Protected Distribution Systems (PDS).
SV-96139r1_ruleXenDesktop License Server must maintain the confidentiality and integrity of information during reception.