STIGQter: STIG Summary: Virtual Private Network (VPN) Security Requirements Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The VPN Gateway must use multifactor authentication (e.g., DoD PKI) for network access to non-privileged accounts.

DISA Rule

SV-207209r608988_rule

Vulnerability Number

V-207209

Group Title

SRG-NET-000140

Rule Version

SRG-NET-000140-VPN-000500

Severity

CAT I

CCI(s)

• CCI-000766 - The information system implements multifactor authentication for network access to non-privileged accounts.

Weight

10

Fix Recommendation

Configure the VPN Gateway to use multifactor authentication (e.g., DoD PKI) for network access to non-privileged accounts.

Check Contents

Verify the VPN Gateway uses multifactor authentication (e.g., DoD PKI) for network access to non-privileged accounts.

If the VPN Gateway does not use multifactor authentication (e.g., DoD PKI) for network access to non-privileged accounts, this is a finding.

Vulnerability Number

V-207209

Documentable

False

Rule Version

SRG-NET-000140-VPN-000500

Severity Override Guidance

Verify the VPN Gateway uses multifactor authentication (e.g., DoD PKI) for network access to non-privileged accounts.

If the VPN Gateway does not use multifactor authentication (e.g., DoD PKI) for network access to non-privileged accounts, this is a finding.

Check Content Reference

M

Target Key

2920

Comments