STIGQter: STIG Summary: Unified Endpoint Management Server Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The MDM server must retain the session lock until the user reestablishes access using established identification and authentication procedures.

DISA Rule

SV-234279r617355_rule

Vulnerability Number

V-234279

Group Title

SRG-APP-000005

Rule Version

SRG-APP-000005-UEM-000005

Severity

CAT II

CCI(s)

• CCI-000056 - The information system retains the session lock until the user reestablishes access using established identification and authentication procedures.

Weight

10

Fix Recommendation

Configure the MDM server to retain the session lock until the user reestablishes access using established identification and authentication procedures.

Check Contents

Verify the UEM server retains the session lock until the user reestablishes access using established identification and authentication procedures.

If the UEM server does not retain the session lock until the user reestablishes access using established identification and authentication procedures, this is a finding.

Vulnerability Number

V-234279

Documentable

False

Rule Version

SRG-APP-000005-UEM-000005

Severity Override Guidance

Verify the UEM server retains the session lock until the user reestablishes access using established identification and authentication procedures.

If the UEM server does not retain the session lock until the user reestablishes access using established identification and authentication procedures, this is a finding.

Check Content Reference

M

Target Key

5269

Comments