STIGQter: STIG Summary: Unified Endpoint Management Agent Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The UEM Agent must use managed endpoint device key storage for all persistent secret and private keys.

DISA Rule

SV-234240r617354_rule

Vulnerability Number

V-234240

Group Title

SRG-APP-000176

Rule Version

SRG-APP-000176-UEM-100001

Severity

CAT II

CCI(s)

• CCI-000186 - The information system, for PKI-based authentication, enforces authorized access to the corresponding private key.

Weight

10

Fix Recommendation

Configure the UEM Agent must use the managed endpoint device key storage for all persistent secret and private keys.

Check Contents

This requirement is not applicable if the UEM Agent is provided by the managed endpoint device operating system.

Verify the UEM Agent uses the managed endpoint device key storage for all persistent secret and private keys.

If the UEM Agent does not use the managed endpoint device key storage for all persistent secret and private keys, this is a finding.

Vulnerability Number

V-234240

Documentable

False

Rule Version

SRG-APP-000176-UEM-100001

Severity Override Guidance

This requirement is not applicable if the UEM Agent is provided by the managed endpoint device operating system.

Verify the UEM Agent uses the managed endpoint device key storage for all persistent secret and private keys.

If the UEM Agent does not use the managed endpoint device key storage for all persistent secret and private keys, this is a finding.

Check Content Reference

M

Target Key

5262

Comments