STIGQter: STIG Summary: Virtual Private Network (VPN) Security Requirements Guide Version: 2 Release: 3 Benchmark Date: 23 Apr 2021:

The VPN Gateway must map the authenticated identity to the user account for PKI-based authentication.

DISA Rule

SV-207217r608988_rule

Vulnerability Number

V-207217

Group Title

SRG-NET-000166

Rule Version

SRG-NET-000166-VPN-000590

Severity

CAT II

CCI(s)

• CCI-000187 - The information system, for PKI-based authentication, maps the authenticated identity to the account of the individual or group.

Weight

10

Fix Recommendation

Configure the VPN Gateway to map the authenticated identity to the user account for PKI-based authentication.

Check Contents

Verify the VPN Gateway maps the authenticated identity to the user account for PKI-based authentication.

If the VPN Gateway does not map the authenticated identity to the user account for PKI-based authentication, this is a finding.

Vulnerability Number

V-207217

Documentable

False

Rule Version

SRG-NET-000166-VPN-000590

Severity Override Guidance

Verify the VPN Gateway maps the authenticated identity to the user account for PKI-based authentication.

If the VPN Gateway does not map the authenticated identity to the user account for PKI-based authentication, this is a finding.

Check Content Reference

M

Target Key

2920

Comments