STIGQter: STIG Summary: Unified Endpoint Management Server Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

All UEM server local accounts created during application installation and configuration must be removed. Note: In this context local accounts refers to user and or administrator accounts on the server that use user name and password for user access and authentication.

DISA Rule

SV-234358r617355_rule

Vulnerability Number

V-234358

Group Title

SRG-APP-000151

Rule Version

SRG-APP-000151-UEM-000085

Severity

CAT II

CCI(s)

• CCI-000767 - The information system implements multifactor authentication for local access to privileged accounts.

Weight

10

Fix Recommendation

Remove all UEM server local accounts created during application installation.

Note: In this context "local" accounts refers to user and or administrator accounts on the server that use user name and password for user access and authentication.

Check Contents

Verify all UEM server local accounts created during application installation and configuration have been removed.

Note: In this context "local" accounts refers to user and or administrator accounts on the server that use user name and password for user access and authentication.

If all UEM server local accounts created during application installation and configuration have not been removed, this is a finding.

Vulnerability Number

V-234358

Documentable

False

Rule Version

SRG-APP-000151-UEM-000085

Severity Override Guidance

Verify all UEM server local accounts created during application installation and configuration have been removed.

Note: In this context "local" accounts refers to user and or administrator accounts on the server that use user name and password for user access and authentication.

If all UEM server local accounts created during application installation and configuration have not been removed, this is a finding.

Check Content Reference

M

Target Key

5269

Comments