STIGQter: STIG Summary: F5 BIG-IP Access Policy Manager 11.x Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020: STIGQter: STIG Summary: F5 BIG-IP Access Policy Manager 11.x Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:SV-215727r557355_rule
V-215727
SRG-NET-000337-ALG-000096
F5BI-AP-000191
CAT II
10
If user authentication intermediary services are provided, configure an access policy in the BIG-IP APM module to require users to re-authenticate when organization-defined circumstances or situations require re-authentication.
If the BIG-IP APM module does not provide user authentication intermediary services, this is not applicable.
Verify the BIG-IP APM module is configured as follows:
Navigate to the BIG-IP System manager >> Access Policy >> Access Profiles.
Click "Edit..." in the "Access Policy" column for an Access Profile used for organizational access.
Verify the Access Profile is configured to require users to re-authenticate when organization-defined circumstances or situations require re-authentication.
If the BIG-IP APM module is not configured to require users to re-authenticate when organization-defined circumstances or situations require re-authentication, this is a finding.
V-215727
False
F5BI-AP-000191
If the BIG-IP APM module does not provide user authentication intermediary services, this is not applicable.
Verify the BIG-IP APM module is configured as follows:
Navigate to the BIG-IP System manager >> Access Policy >> Access Profiles.
Click "Edit..." in the "Access Policy" column for an Access Profile used for organizational access.
Verify the Access Profile is configured to require users to re-authenticate when organization-defined circumstances or situations require re-authentication.
If the BIG-IP APM module is not configured to require users to re-authenticate when organization-defined circumstances or situations require re-authentication, this is a finding.
M
4018