STIGQter STIGQter: STIG Summary: ISEC7 Sphere Security Technical Implementation Guide Version: 2 Release: 1 Benchmark Date: 23 Oct 2020:

The ISEC7 EMM Suite must be configured to leverage the enterprise directory service accounts and groups for ISEC7 EMM Suite server admin identification and authentication.

DISA Rule

SV-224773r505933_rule

Vulnerability Number

V-224773

Group Title

SRG-APP-000516

Rule Version

ISEC-06-002510

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Log in to the ISEC7 EMM Console.
Navigate to Administration >> Configuration >> LDAP.
Select Add new LDAP .
Provide the connection information for the enterprise LDAP connection.
Check the box Use for Login.
Navigate to Administration >> Configuration >> Settings.
Set Log in using (Default) to the enterprise connection.

Check Contents

Log in to the ISEC7 EMM Console.
Navigate to Administration >> Configuration >> LDAP.
Verify that a LDAP entry has been configured to the enterprise.
Select Edit and confirm the Use for Login check box has been selected.
Navigate to Administration >> Configuration >> Settings.
Verify that Log in using (Default) has been set to the enterprise connection.

If a LDAP entry has not been configured to the enterprise or Log in using (Default) has not been set to the enterprise connection, this is a finding.

Vulnerability Number

V-224773

Documentable

False

Rule Version

ISEC-06-002510

Severity Override Guidance

Log in to the ISEC7 EMM Console.
Navigate to Administration >> Configuration >> LDAP.
Verify that a LDAP entry has been configured to the enterprise.
Select Edit and confirm the Use for Login check box has been selected.
Navigate to Administration >> Configuration >> Settings.
Verify that Log in using (Default) has been set to the enterprise connection.

If a LDAP entry has not been configured to the enterprise or Log in using (Default) has not been set to the enterprise connection, this is a finding.

Check Content Reference

M

Target Key

4200

Comments